last executing test programs:

3m20.241364629s ago: executing program 3 (id=1300):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000003340)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000600)='4', 0x1}], 0x1, &(0x7f00000002c0)=[@rights={{0x10, 0x1, 0x1, [r0]}}], 0x10}}], 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x98}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x90)

3m20.18343259s ago: executing program 3 (id=1301):
r0 = openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000040)={0x0, @reserved})
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ASSOCIATE_RESP(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0302}}]}, 0x20}, 0x1, 0x0, 0x0, 0x2}, 0x4000)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r2)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x24, 0x0, 0x2, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000380), r2)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x2c, r3, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040800}, 0x10)
r4 = openat$ppp(0xffffff9c, &(0x7f0000000480), 0x426800, 0x0)
ioctl$PPPIOCGIDLE(r4, 0x8008743f, &(0x7f00000004c0))
sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x2c, 0x0, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x2c}}, 0x0)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r2)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x68, r5, 0x0, 0x70bd2c, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}]}, 0x68}, 0x1, 0x0, 0x0, 0x41010}, 0x8040)
socket(0x1f, 0x0, 0x2)
r6 = dup(r0)
connect$l2tp6(r6, &(0x7f0000000780)={0xa, 0x0, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3}, 0x20)
syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r0)
openat$nullb(0xffffff9c, &(0x7f0000000800), 0x20000, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000880), r1)
sendmsg$NLBL_MGMT_C_VERSION(r7, &(0x7f0000000980)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000940)={&(0x7f00000008c0)={0x58, r8, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xf}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @loopback}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xb}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000001}, 0x8000)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r2, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0002}}]}, 0x20}, 0x1, 0x0, 0x0, 0x8891}, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000002c40)={<r9=>0x0}, &(0x7f0000002c80)=0xc)
lstat(&(0x7f0000002e40)='./file0\x00', &(0x7f0000002e80)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000002f80)={{{@in6, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in=@multicast2}, 0x0, @in6=@initdev}}, &(0x7f0000003080)=0xe4)
read$FUSE(r6, &(0x7f0000003300)={0x2020, 0x0, 0x0, <r12=>0x0}, 0x2020)
read$FUSE(r6, &(0x7f0000005340)={0x2020, 0x0, 0x0, <r13=>0x0}, 0x2020)
r14 = getgid()
syz_fuse_handle_req(r6, &(0x7f0000000ac0)="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", 0x2000, &(0x7f0000007d40)={&(0x7f0000002ac0)={0x50, 0x0, 0x7f, {0x7, 0x2d, 0x1, 0x42, 0x4, 0x3, 0x1, 0x1, 0x0, 0x0, 0x20, 0x180000}}, &(0x7f0000002b40)={0x18, 0x3fec33f276b5fcb6, 0x47, {0x9}}, &(0x7f0000002b80)={0x18, 0x0, 0x0, {0xf}}, &(0x7f0000002bc0)={0x18, 0x0, 0xb, {0x1}}, &(0x7f0000002c00)={0x18, 0x0, 0x6, {0x5}}, &(0x7f0000002cc0)={0x28, 0x0, 0x3, {{0x1, 0x9, 0x2, r9}}}, &(0x7f0000002d00)={0x60, 0x0, 0x9, {{0x6, 0x4827, 0x3, 0x3d, 0x2, 0xfffffff9, 0x7}}}, &(0x7f0000002d80)={0x18, 0x0, 0x0, {0x1}}, &(0x7f0000002dc0)={0x13, 0x0, 0x0, {'&*\x00'}}, &(0x7f0000002e00)={0x20, 0xfffffffffffffff5, 0x8a3d, {0x0, 0xf}}, &(0x7f0000002f00)={0x78, 0x0, 0x8, {0x5ff3, 0x80000001, 0x0, {0x1, 0x4, 0x5, 0xffffffffffffffff, 0x8, 0x3, 0x3, 0x9000, 0x7, 0x8000, 0x4, 0x0, r10, 0x8, 0x6a}}}, &(0x7f00000030c0)={0x90, 0x0, 0x9, {0x4, 0x0, 0x7, 0x4, 0xe, 0xfffffc00, {0x0, 0x6, 0x9, 0x7, 0x2, 0x2, 0x2, 0x7f, 0x984, 0x8000, 0x2, r11, 0xee01, 0x7, 0x1}}}, &(0x7f0000003180)={0x150, 0x0, 0xb, [{0x4, 0xfffffffffffffffc, 0x5, 0xfe, '@,+\xac{'}, {0x6, 0x4, 0xa, 0xd, 'NLBL_MGMT\x00'}, {0x3, 0x7, 0x9, 0x7, '/dev/ppp\x00'}, {0x2, 0x8, 0x5, 0x12, '}+\x80-.'}, {0x0, 0x4, 0xa, 0x8000, 'NLBL_MGMT\x00'}, {0x4, 0x9, 0xc, 0x401, ')%.@*#(}^%^\x1b'}, {0x1, 0x37d, 0x6, 0x7, 'wpan3\x00'}, {0x3, 0x4, 0x4, 0xd, 'nfc\x00'}, {0x0, 0x4, 0x1, 0xb, '.'}]}, &(0x7f0000007680)={0x340, 0x0, 0xfffffffffffffffe, [{{0x1, 0x1, 0x710, 0x1, 0x1, 0x7, {0x3, 0xffff, 0x100000001, 0x4, 0x0, 0x100, 0x5, 0x0, 0x9, 0xa000, 0x8001, r12, 0x0, 0xfffff014, 0xfffffffa}}, {0x3, 0x729b487d, 0xb, 0x1, 'NLBL_UNLBL\x00'}}, {{0x0, 0x1, 0x7, 0x200, 0xffff8001, 0x3, {0x2, 0x2, 0x1, 0x2f9, 0xffffffffffffffff, 0x2, 0x75, 0x100, 0x8, 0x1000, 0x1, r13, r14, 0x9, 0xc}}, {0x0, 0x1, 0x6, 0x7, 'wpan3\x00'}}, {{0x4, 0x2, 0x1, 0x10001, 0x9, 0xf06a, {0x2, 0xfffffffffffffff9, 0x10, 0x2, 0x8000000000000001, 0xffffffffffffffc9, 0x8, 0x80000000, 0x9, 0x8000, 0x4, 0x0, 0xee00, 0x7, 0x2}}, {0x6, 0x8000000000000001, 0x2, 0x7f, '%%'}}, {{0x3, 0x0, 0x3, 0xaf7, 0x68b6d8fb, 0x5, {0x1, 0x8, 0x10000, 0x400, 0xfffffffffffffff7, 0x0, 0xfffffe00, 0x1, 0xfffffff9, 0xa000, 0x9, 0x0, 0x0, 0x3, 0x3}}, {0x5, 0x3, 0xd, 0x5, '/dev/video37\x00'}}, {{0x5, 0x2, 0x6, 0x4, 0x4, 0x2, {0x3, 0x4, 0x7, 0x4047d22a, 0x5, 0x100, 0xfff00000, 0x6f, 0x3c77, 0xc000, 0x9372, 0x0, 0x0, 0xc48, 0x4}}, {0x2, 0xafd2, 0x1, 0x4, '&'}}]}, &(0x7f0000007b00)={0xa0, 0xffffffffffffffda, 0x8000, {{0x0, 0x2, 0x5, 0x9a, 0x4, 0x2, {0x3, 0x6, 0x0, 0x40, 0x1, 0x2, 0xa8d, 0x0, 0x4, 0x8000, 0xf, 0xffffffffffffffff, 0x0, 0xfffeffff, 0x1}}, {0x0, 0x13}}}, &(0x7f0000007bc0)={0x20, 0x0, 0x8, {0x7, 0x0, 0x8, 0x3ff}}, &(0x7f0000007c00)={0x130, 0x0, 0xa21, {0x0, 0x40, 0x0, '\x00', {0x4, 0x9, 0xa50c, 0x8000, 0xee00, 0x0, 0xc000, '\x00', 0x7fffffff, 0x2, 0xfff, 0x4, {0x9, 0x10001}, {0x100, 0x9}, {0x100, 0xb2d0}, {0xffffffffffffff77, 0x8000}, 0x620, 0x80000001, 0x1, 0x6}}}})

3m19.873865482s ago: executing program 3 (id=1302):
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x183240)
execveat(r0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000340)={[&(0x7f0000000180)='wg1\x00', &(0x7f00000001c0)='[(-\x81\x00', &(0x7f0000000300)='TIPCv2\x00']}, &(0x7f0000000540)={[&(0x7f0000000380)='(\x85):\x00', &(0x7f00000003c0)='TIPCv2\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='GPL\x00', &(0x7f0000000480)='\x00']}, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCGSKNS(r1, 0x894c, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000100)={'wg1\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xb, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095", @ANYRES8=r2, @ANYRESOCT=r2], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r2, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r3, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)

3m19.753187502s ago: executing program 3 (id=1303):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x10, 0x0)

3m19.683807967s ago: executing program 3 (id=1304):
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x3, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000140)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c0d23266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000040)={0x4})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, {0xeda7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xf8}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x2710, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x20000000, 0x0, 0x41, 0x0, 0x6, 0x2004cb, 0x0, 0x0, 0xfffffffbfffffff8, 0x8000000000000000, 0x9, 0x2000000000003ff, 0x2, 0x9], 0x2000, 0x280246})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

3m18.421046326s ago: executing program 3 (id=1308):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
memfd_create(0x0, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000100)={0xc807, 0x8001, 0x3, 0x6, 0xf5, 0x23, 0x7, "0d7ee50cd22a7b1752d9334123b637c3dd70f984", "556a48faada9fd697081e93400"})
r1 = syz_open_dev$MSR(0x0, 0x32, 0x0)
read$msr(r1, 0x0, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x3c)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a3100000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x5000, 0x0, @loopback, 0x5}, 0x1c)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1)

3m18.277357065s ago: executing program 32 (id=1308):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
memfd_create(0x0, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000100)={0xc807, 0x8001, 0x3, 0x6, 0xf5, 0x23, 0x7, "0d7ee50cd22a7b1752d9334123b637c3dd70f984", "556a48faada9fd697081e93400"})
r1 = syz_open_dev$MSR(0x0, 0x32, 0x0)
read$msr(r1, 0x0, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x3c)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a3100000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x5000, 0x0, @loopback, 0x5}, 0x1c)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1)

6.908557508s ago: executing program 1 (id=2143):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x3, 0x0, 0x717e387b, 0x40, "1ae34e0626788a22b2fb12dab240794233a5bd", 0x4, 0x2})
socket$inet_sctp(0x2, 0x5, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xc, &(0x7f0000000380)={0x100008, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$vim2m(0x0, 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000040)=0x1)
syz_open_dev$sg(0x0, 0x0, 0x40000)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000000), 0xe)
listen(r2, 0x0)
getsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000200), &(0x7f0000000340)=0x4)
r3 = openat$pmem0(0xffffff9c, &(0x7f00000000c0), 0x20041, 0x0)
ioctl$BLKFRAGET(r3, 0x1265, &(0x7f0000000100))
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
syz_open_dev$usbfs(&(0x7f0000000440), 0x76, 0x160243)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x20081, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r6 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r6, 0x400442c8, &(0x7f0000000200)=ANY=[@ANYRES32=r5])
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0x15)
r7 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r7, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000001)

5.990684692s ago: executing program 1 (id=2149):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x1c, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x1c, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
socket$xdp(0x2c, 0x3, 0x0) (async)
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, 0xffffffffffffffff, &(0x7f0000000080)=0x20) (async)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, 0xffffffffffffffff, &(0x7f0000000080)=0x20)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001", @ANYRESHEX=r1], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0xf9fa, 0x300}, 0x0, &(0x7f0000000100)={0x8, 0x0, 0x0, 0x1}, 0x0, 0x0) (async)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0xf9fa, 0x300}, 0x0, &(0x7f0000000100)={0x8, 0x0, 0x0, 0x1}, 0x0, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xa, 0x8, &(0x7f0000000f40)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x75, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xa, 0x8, &(0x7f0000000f40)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x75, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="210f00000000fedbdf252000000008000300", @ANYRES32=r3, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_SEND_PRIO(r4, 0x6b, 0x3, 0x0, 0x0) (async)
getsockopt$SO_J1939_SEND_PRIO(r4, 0x6b, 0x3, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000008cda52c1dc99168f6aac880000000004", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r6 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) (async)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
write$binfmt_aout(r7, &(0x7f0000000080)=ANY=[], 0xff70)
ioctl$TCXONC(r7, 0x540a, 0x2)
ioctl$TCXONC(r7, 0x540a, 0x3) (async)
ioctl$TCXONC(r7, 0x540a, 0x3)

5.879032316s ago: executing program 1 (id=2151):
socket(0x2, 0x2, 0x1) (async)
r0 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffef9, 0x0, 0x0, 0x10, 0xff}, 0x94) (async)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffef9, 0x0, 0x0, 0x10, 0xff}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2e}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) (async)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_BT_POWER(r6, 0x112, 0x9, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x51, '\x00', r1, 0xffffffffffffffff, 0x1, 0x3, 0x3}, 0x50) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x51, '\x00', r1, 0xffffffffffffffff, 0x1, 0x3, 0x3}, 0x50)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip6_tables_names\x00') (async)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip6_tables_names\x00')
preadv2(r7, &(0x7f0000000140)=[{&(0x7f0000000080)=""/179, 0xb3}], 0x1, 0xfffffff0, 0x7fffffff, 0x1c)
r8 = socket$netlink(0x10, 0x3, 0xa)
dup(r8) (async)
r9 = dup(r8)
r10 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r10, 0x200004)
sendfile(r9, r10, 0x0, 0x80001d00c0d1)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x1, 0xfffffffd}, 0x28)
r12 = syz_open_dev$vbi(&(0x7f0000000380), 0x1, 0x2)
ioctl$VIDIOC_G_OUTPUT(r12, 0x8004562e, &(0x7f0000000180)) (async)
ioctl$VIDIOC_G_OUTPUT(r12, 0x8004562e, &(0x7f0000000180))
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r11, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}}, 0x10) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r11, 0x20, &(0x7f0000000100)={0x0, 0x0, <r13=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001840)=r13, 0x4) (async)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001840)=r13, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{0x1, <r14=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)=r2}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x19, 0x19, &(0x7f00000007c0)=ANY=[], &(0x7f0000000540)='GPL\x00', 0x8, 0x1e, &(0x7f0000000440)=""/30, 0x41000, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r13, r3, 0x0, &(0x7f0000000680)=[r14], &(0x7f00000006c0), 0x10, 0x1}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r15=>0x0})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
openat$mice(0xffffff9c, &(0x7f00000002c0), 0x2001)
setxattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='trusted.syz\x00', 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000001c0)={0x0, 0x8d9, 0x403, 0x9, 0xf, 0x8000})
llistxattr(&(0x7f0000002300)='./file0\x00', 0x0, 0xfffffdf3)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r15, {0x0, 0xffff}, {0x4, 0xfff3}, {0x0, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r15, {0x0, 0xffff}, {0x4, 0xfff3}, {0x0, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0)

5.361117402s ago: executing program 1 (id=2154):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0x28, r1, 0x100, 0x70bd27, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xae}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd4}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c000}, 0x4000080)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r3=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r4=>0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r5, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r6, &(0x7f0000002140)={0xa, 0x4e25, 0x1, @mcast2, 0x7}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0), 0x0, 0x4001c00)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010428bd70000000000000000000", @ANYBLOB="d378d46adb7eeae02cff1afb27440ef89212d0452c2184ee8d7496147aa87efe73bb99d9347204681a20d47274c698fa47afe9d8b3179965ee1a5771dffc2c2901a4234832534da02bab4d921bd34c413b0636456fdab737a6f6ec24a831c60cd6819040fc0a55c32047f5d01d453b01efab80282338f3b27725b8a0f1a6da5ea1395cfd092a48e167f475c50f78901e1d95c60d89d7e7ce48fee9e6725a1ecc9cb5ac659d288481ba708c21eca5db6b3ccf02ce1bcdb8ecdb51367af0152eabdee3e5701d035f2a3fd9427ae88500b9beb62356a89b93659f27c337ccdeb124bad87bcde9fa80b14e4270c5c573563b8e", @ANYBLOB="03c0e168e44000021c001280090001f8756c61e73c5e49c492eb1f80060001000400000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4, @ANYBLOB], 0x4c}, 0x1, 0x0, 0x0, 0x240008c4}, 0x20008004)

5.145319136s ago: executing program 1 (id=2156):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x40}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
process_vm_writev(r1, &(0x7f0000000d40)=[{&(0x7f0000000180)=""/42, 0x2a}, {&(0x7f0000000700)=""/179, 0xb3}, {&(0x7f00000007c0)=""/203, 0xcb}, {&(0x7f00000008c0)=""/158, 0x9e}, {&(0x7f0000000980)=""/187, 0xbb}, {&(0x7f0000000a40)=""/217, 0xd9}, {&(0x7f0000000b40)=""/92, 0x5c}, {&(0x7f0000000bc0)=""/28, 0x1c}, {&(0x7f0000000c00)=""/189, 0xbd}, {&(0x7f0000000cc0)=""/67, 0x43}], 0xa, &(0x7f0000001e80)=[{&(0x7f0000000dc0)=""/4096, 0x1000}, {&(0x7f0000001dc0)=""/153, 0x99}], 0x2, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc2c45512, &(0x7f0000000340)={{0x7, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0xffffffff, 0xffbf, 0x8, 0xfffffffd, 0x80000001, 0x0, 0xfffffffe, 0xfffffffd, 0xfffffffc, 0x0, 0x400006, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffd, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x7fffffff, 0x0, 0x0, 0x0, 0x6, 0x0, 0x8000, 0x0, 0x0, 0x0, 0xffffffc7, 0x0, 0x4, 0x0, 0x2, 0x3, 0x0, 0x0, 0x4, 0x0, 0x68, 0x0, 0x20000000, 0x3, 0x7fff, 0x0, 0x800, 0x402, 0x0, 0x8, 0x4, 0x8, 0x0, 0x0, 0x0, 0x7, 0x0, 0x408, 0x0, 0x0, 0x9, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x4, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x2, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x2, 0x0, 0x5, 0xe5ce}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x8100}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x24008041}, 0x10000800)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r6=>r5, {0x7}}, './file0\x00'})
ioctl$KVM_GET_FPU(r6, 0x81a0ae8c, &(0x7f0000001ec0))
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000000240)={0xffffffffffffffff, 0x7fc, 0x2})
ioctl$KVM_SET_IRQCHIP(r5, 0xae64, 0x0)
ioctl$KVM_SET_PIT2(r5, 0xae71, &(0x7f00000002c0)={[{0x10000, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0xff, 0x80, 0x1, 0x0, 0x0, 0x100000000000000}, {0xffffffff, 0x0, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x10, 0xc}, {0x10000, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x21, 0x3, 0xfd, 0x0, 0xfe, 0x0, 0x800}]})

4.890212086s ago: executing program 2 (id=2157):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r2, {0x81}}, './file0\x00'})
r4 = openat$uhid(0xffffff9c, &(0x7f0000000080), 0x802, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r4}, './file0\x00'})
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000140)=<r6=>0x0)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, r1, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0xce}, @NFC_ATTR_LLC_PARAM_RW={0x5}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000800}, 0x841)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r3, 0x7, 0x0, 0xf, &(0x7f0000000240)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0], <r7=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000380)={@cgroup=r3, r3, 0x1f, 0x2000, 0x0, @value=r3, @void, @void, @void, r7}, 0x20)
r8 = openat$panthor(0xffffff9c, &(0x7f00000003c0), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r8, 0xc06864a1, &(0x7f0000000440)={&(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5})
r9 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f00000016c0)={&(0x7f00000004c0)="3c8eb5af33f01d2e9dfd5888f294afa41adaf28395331e57dc83b620f38e6b3f9ad4b8cc52", &(0x7f0000000500)=""/160, &(0x7f00000005c0)="8ca29bec523bb5c6253441e67ca272ae971499c191c13363517356e6452a18ba796e12151825929812012af8f6b1456cf86b6e250fbbfe592132d42d38fc374ff5564e7addddde947cf83d7f3e734e3bd0f10ad4933c779430b6f83cdc3c3ceab190eeea4a342ff8ea06bcb82c3489ee718ceee9a6f97d25d363165239d8c198ec4201b52828cf49fb43c86ed2a58ed2ba5238c4402a8910357601725c4b22dbe197e9be3a4865b3776aaa92404299bbe025b02ab6908f56fc29448e5695ebe91d4e9eae3f69109580d6b0fefa07a94a5a617c4815125501a79e", &(0x7f00000006c0)="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", 0x80f8, r3}, 0x38)
statx(r3, &(0x7f0000001700)='./file0\x00', 0x800, 0x800, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
r11 = getgid()
r12 = getegid()
stat(&(0x7f0000001840)='./file0\x00', &(0x7f0000001880)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
getgroups(0x4, &(0x7f0000001900)=[r10, r11, r12, r13])
ioctl$DRM_IOCTL_MODE_GETENCODER(r8, 0xc01464a6, &(0x7f00000019c0)={0x0, 0x0, <r14=>0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r8, 0xc01c64b9, &(0x7f0000001a00)={&(0x7f0000001940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001980)=[0x0, 0x0, 0x0], 0x7, r14, 0xbbbbbbbb})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r8, 0xc01064c8, &(0x7f0000001a80)={0x9, 0x0, &(0x7f0000001a40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r8, 0xc01864b0, &(0x7f0000001ac0)={r14, r15, 0x2, 0x0, 0x7})
r16 = dup(r9)
ioctl$DRM_IOCTL_RM_MAP(r16, 0x4018641b, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil})
write(r5, &(0x7f0000001b40)="d3aa4d2e73e43ef54dda392815b58eebf18bfe83635fcbd6f344cd5f70c3293c36a4811f3b8e9797de20edf9a80115f71b55c4854241317c2ab3855ccd49b9871d855b5160cb90a732b0e87ae265651a6dcd9a71c20dcbcc11a7adc85125b8f27883c482ba4a6776a07dc917f8ea5e675bb1a7913499e275f0582c80c2f68ac4d0afaa239155a9ab12e178f786fb1661d4b20bf14c5ea967f47b9269a69ca8eed09b0a0a", 0xa4)
r17 = syz_open_dev$dri(&(0x7f0000001c00), 0x1, 0x40)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r17, 0xc01864b0, &(0x7f0000001c40)={0x0, 0x0, 0xc, 0xffffffe6, 0x3ff})
r18 = openat$nci(0xffffff9c, &(0x7f0000001c80), 0x2, 0x0)
write$nci(r18, &(0x7f0000001cc0)=@NCI_OP_CORE_GENERIC_ERROR_NTF={0x0, 0x1, 0x3, 0x7, 0x1}, 0x4)

4.777748156s ago: executing program 2 (id=2158):
syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x301880)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x22, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x9, 0x3, 0x0, 0x1}, 0x80}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x11, &(0x7f0000000f40)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7}, @snprintf={{}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x5, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1002}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x6a}}]}, &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x1e, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r2 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @broadcast}, 0xc)
r3 = syz_open_procfs(0x0, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0186405, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}, 0x1, 0x0, 0x0, 0x24000890}, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280), 0x0)

4.320997229s ago: executing program 0 (id=2159):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000230000001800018014000200626f6e645f734c6176655f3000000000"], 0x2c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000230000001800018014000200626f6e645f734c6176655f3000000000"], 0x2c}}, 0x0) (async)

4.201018823s ago: executing program 0 (id=2160):
setreuid(0x0, 0xee01)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
r0 = socket$alg(0x26, 0x5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
shutdown(r0, 0x1)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f00000001c0)={0x82, 0xe, 0xfff9, 0x1, 0x0, 0xe54, 0x0})
io_setup(0x3, &(0x7f00000002c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x2, r1, 0x0}])
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000040}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x48, 0x3, 0x3, 0x3, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x3b8380}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x80000001}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x4}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x200}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x6}}]}, 0x48}, 0x1, 0x0, 0x0, 0x802}, 0x40)

4.14073592s ago: executing program 0 (id=2161):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYRES32], &(0x7f0000000300)='GPL\x00', 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x7b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x20a00, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000480)=0x1)
ioctl$TCSETSF2(r1, 0x8910, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e)
r3 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x13, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[<r7=>0x0, 0x0, <r8=>0x0], &(0x7f0000000380), 0x3, r6, 0xcccccccc})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000580)={0x400, 0x1, &(0x7f0000000180)=[r6], &(0x7f00000000c0)=[0x3], &(0x7f0000000640)=[r8, r8, r7], &(0x7f0000000340), 0x0, 0xfffdffffffffffff})
ioctl$VIDIOC_S_OUTPUT(r3, 0xc004562f, &(0x7f0000000000)=0x1)
r9 = socket$packet(0x11, 0x3, 0x300)
r10 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r10, &(0x7f0000000140)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000005c0)=0x56)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4000000010003904000000000000000080040000", @ANYRES32=r11, @ANYBLOB="01980000000000002000128008000100736974001400028006000e000600000008000100", @ANYRES64=r10], 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x40000)
sendto$packet(r9, &(0x7f0000000600)="05d936277c6f54220002097844ffcf8bd1846f7f83477ca1b278e3e4018a34844b9d62cbd7cd2a62646c", 0x2a, 0x8c1, &(0x7f00000000c0)={0x11, 0x86dd, r11, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
userfaultfd(0x80001)

2.940848762s ago: executing program 0 (id=2165):
openat$apparmor_thread_exec(0xffffffffffffff9c, 0x0, 0x2, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e23, @remote}, @in6={0xa, 0x4e22, 0x7, @mcast1, 0x2}], 0x3c) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4)
r0 = getpid()
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0186405, &(0x7f0000000480)={0x874, 0x7f, {<r2=>r0}, {}, 0x0, 0xfffffc00})
sched_setaffinity(r2, 0x8, &(0x7f0000000200)=0x20e3) (async)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000000040)="1900000021009d34bb0f2f6ebe0000281d4895f1df1201c63f", 0x19}], 0x1}, 0x0) (async)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0x58000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r8, 0xc018aec0, &(0x7f0000000100)={0x1})
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000008c0)={'wlan0\x00'}) (async)
sendmsg$NL80211_CMD_NEW_INTERFACE(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x0) (async)
sendmmsg$inet6(r5, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x0, 0x0, 0xfffffffffffffdbd}}], 0x1, 0x40000000)

2.940406432s ago: executing program 4 (id=2166):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
chdir(0x0)
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = gettid()
prlimit64(0x0, 0xe, 0x0, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f00000005c0)={@dev={0xfe, 0x80, '\x00', 0x40}, @remote, @remote, 0x3, 0x2, 0x5, 0x400, 0xb7, 0xc20022, r6})
syz_emit_ethernet(0x7a, &(0x7f0000000640)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x80}, @val={@void, {0x8100, 0x0, 0x0, 0x1}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '@\x00', 0x40, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x1, 0x0, 0x500, {0x0, 0x6, '\x00', 0x40, 0x0, 0xff, @private1, @private2, [@hopopts={0x3a}], "f4c638bed6f068cc"}}}}}}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x40002)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x24, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0}, 0x20)

2.890041934s ago: executing program 2 (id=2167):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r3 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f00000001c0)={'erspan0\x00', &(0x7f0000000080)={'erspan0\x00', <r4=>0x0, 0x7, 0x80, 0x78, 0x8, {{0x47, 0x4, 0x1, 0x2c, 0x11c, 0x68, 0x0, 0x1, 0x29, 0x0, @empty, @rand_addr=0x64010101, {[@rr={0x7, 0x13, 0x59, [@multicast1, @multicast2, @multicast1, @broadcast]}, @rr={0x7, 0x1f, 0xa7, [@multicast1, @empty, @empty, @empty, @remote, @multicast2, @private=0xa010102]}, @cipso={0x86, 0x57, 0x2, [{0x0, 0x5, '\\dV'}, {0x1, 0x8, "c7b6ef83d461"}, {0x5, 0xf, "e3c1db32883f11ff46e50c786d"}, {0x0, 0xa, "6e9f5ab69871a2c3"}, {0x2, 0x5, "f0e6af"}, {0x0, 0x4, '\'u'}, {0x440b73eb28bf0dac, 0x10, "c83a07e6cc7759bab2178eb14075"}, {0x2, 0x2}, {0x0, 0x10, "c6ba8172bc43d145e24297c33ed9"}]}, @timestamp={0x44, 0x18, 0x8, 0x0, 0x2, [0x3, 0x1, 0x1, 0x0, 0xc73a]}, @ssrr={0x89, 0x7, 0xcc, [@remote]}, @generic={0x86, 0x8, "dabcf9d18c31"}, @cipso={0x86, 0x57, 0xffffffffffffffff, [{0x2, 0xd, "c1d8fed95f0c59e0ea0ed0"}, {0x5, 0xe, "9c04a740c00dea62f6f39e93"}, {0x0, 0xc, "5e5fd148a658901059e0"}, {0x7, 0xc, "429bca35756020ec2165"}, {0x5, 0xe, "5693297d5c363823c6696c2f"}, {0x1, 0x10, "7a93abc9376c364ac4c3310cec44"}]}]}}}}})
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x6, 0xc, @vifc_lcl_ifindex=r4, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
symlink(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='./file0\x00')
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000300)=0x14)
mkdirat(r1, &(0x7f0000000340)='./file0\x00', 0x100)
r7 = fsmount(r0, 0x1, 0x70)
ioctl$KVM_TRANSLATE(r7, 0xc018ae85, &(0x7f0000000380)={0xfec00000, 0xa000, 0x5a, 0x3, 0xd})
openat(r7, &(0x7f00000003c0)='./file0\x00', 0x10180, 0x2)
openat$ptp0(0xffffff9c, &(0x7f0000000400), 0x1, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)=@mpls_getroute={0x124, 0x1a, 0x200, 0x70bd2b, 0x25dfdbfc, {0x1c, 0x0, 0x0, 0x4, 0xfc, 0x1, 0x0, 0x9, 0x2080}, [@RTA_NEWDST={0x84, 0x13, [{0x7fff}, {0xc, 0x0, 0x1}, {0x5}, {0xe4}, {0xf}, {0x9}, {0x2, 0x0, 0x1}, {0x3ff, 0x0, 0x1}, {0x800}, {0x6, 0x0, 0x1}, {0x8, 0x0, 0x1}, {0x2}, {0x8, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x2, 0x0, 0x1}, {0x8}, {0x2}, {0x1, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x8}, {0x7}, {0xc, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x3, 0x0, 0x1}, {0x80, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x5, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x7, 0x0, 0x1}, {0xe051, 0x0, 0x1}]}, @RTA_NEWDST={0x84, 0x13, [{0x3}, {0xff, 0x0, 0x1}, {0xffff, 0x0, 0x1}, {0xc, 0x0, 0x1}, {0x101}, {0x3, 0x0, 0x1}, {0x2, 0x0, 0x1}, {0x2}, {0xfffe1}, {0x5}, {0x2}, {0x1}, {0x400, 0x0, 0x1}, {0x4, 0x0, 0x1}, {0x8}, {0x5, 0x0, 0x1}, {0x5, 0x0, 0x1}, {0x7f, 0x0, 0x1}, {0x3f0, 0x0, 0x1}, {0x89e00}, {0x7, 0x0, 0x1}, {0x3}, {0x7, 0x0, 0x1}, {0x8, 0x0, 0x1}, {0x3, 0x0, 0x1}, {0x9}, {0x8, 0x0, 0x1}, {0xff}, {}, {0x4, 0x0, 0x1}, {0x9}, {0x9}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000)
pwritev2(r3, &(0x7f0000000a00)=[{&(0x7f0000000640)="b03e0e0d11042ffac012d324342a278d55c6b3c1174d8d2b3861e67757fdcce0a196a0b3084c81b5c46b0a52a54de462ede0374e1f5622bbf371e18ba0dd1cd1cd2da3", 0x43}, {&(0x7f00000006c0)="60f8be1e15402c2ae5402486019942a1d48b18846337d8bb2b899314c03a226a9d2c63aa4280d40303c27284d9673c0706fbc7b3ee515fda0675e35b83938599f4d5fe15a230f25e77e38968c7f4834a735725532cb7b6f750a9fc667f1e8f7f29caefadd30a90674005703d633e99afb389b410ac6bcb671ee4004a54de016b5f7c110ed4b41022c47b22fbd404e8f6f302275027a2270ffccf08f90af831a7654ca34f7a8bf05c8b2aff71c51fce0a8b2471da75834126", 0xb8}, {&(0x7f0000000780)="9e5be352e4b129a64042082a3f59002b7d4a11f1c574590d4ac36ef7b16c47246764b0f3b26e6cd206cd4e4c378a2c6fe071e6c88297228dcb2625016b5d0304f2d83efe65a07855203a0bb1bff35bc93b86192b2e66123c630cd04d3ae2a7dfb0edd5894b61092bb008a2cfd09310a77c1a0dd5ae506e007b68df1dc3020672c77cd45576c1ecccf365ee4801cbaf6ff2c71962ba3224b93f3a45d20fa655ad94a3b11f5af1aec855580ba8dd86a4bd58", 0xb1}, {&(0x7f0000000840)="2234c695de2f81bfb4260977ac14712299a2bd8abda1b79cd9a49cb2e17f934461bf148843a2835743a77c48d8db77cb7e21ce49e5aacf208f200c6f6a4cde4909aa92c55da32f0095d7e9e1a15cb96e646bf360fa71ad1ee599b19f9b88c56482811a471d121c108170f56372eea739b86acc54781a006021c0dd50cbbba147f7a11623dab3c8fb61d8dcce943c193ba6490f91a90b62818a681e0be469a28f2d9190e18b15a3276202a499d748981e5b282625108840fa75c7386e937204231676996b11285fa09cb134a64730225a576415da0b", 0xd5}, {&(0x7f0000000940)="0225efe7a9159b2a7732b45dae7f05cb64d398dc13f872d2c2b3f142ce7f676fb74fcbdbae2de552f4e50932", 0x2c}, {&(0x7f0000000980)="c6d46619b97d935966734e9870d75f0384c276998e5114517929956970780f0091a24f87f83574052d3836be292b7495", 0x30}, {&(0x7f00000009c0)="31e50fcc5fc23fd54621759d60c771381d73ee89db5e73d49a3f98673396409b482644dff66822", 0x27}], 0x7, 0x2, 0x101, 0x2)
openat$nullb(0xffffff9c, &(0x7f0000000a40), 0x80c00, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000a80)={0x10004, 0x6, 0x60000, 0x2000, &(0x7f0000ffc000/0x2000)=nil})
mount$bind(&(0x7f0000000ac0)='./file0\x00', &(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40), 0x804, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000b80)={0x6, 0x8, {<r8=>0xffffffffffffffff}, {0xffffffffffffffff}, 0x7fff, 0x4})
ioctl$TIOCGSID(r7, 0x5429, &(0x7f0000000bc0)=<r9=>0x0)
setpgid(r8, r9)
r10 = openat$uinput(0xffffff9c, &(0x7f0000000c00), 0x2, 0x0)
ioctl$UI_DEV_CREATE(r10, 0x5501)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r7, 0x8982, &(0x7f0000000c40)={0x1, 'bond_slave_0\x00', {}, 0xfffd})
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000c80)={0x2, {0x2, 0x9, 0x1, 0x2, 0x2, 0x2}})
lseek(r3, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000d00)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_LEAVE_MESH(r7, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x28, r2, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r11}, @val={0xc, 0x99, {0x0, 0x1b}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x11)
ioctl$OCFS2_IOC_MOVE_EXT(r1, 0x40406f06, &(0x7f0000000e00)={0x5, 0xa61f, 0x8000000000000000, 0x8, 0x2})

2.831971802s ago: executing program 2 (id=2168):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = openat$ttyS3(0xffffff9c, 0x0, 0x210100, 0x0)
syz_open_pts(r1, 0x81)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000380)=0x800)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x20024090)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000080)={0xffffffff, "5e5c3446aa0ecd604c893eba3198600b1891109654fe9676d14574be70b6225c", <r8=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r8, 0xc0303e03, &(0x7f00000000c0)={"ff87c89d4e3e6bd4ae7ee3551b880c0ac56cb2a58b7da498a7045278c8043bbe", r8})
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
r9 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000380), 0x101202, 0x0)
write$nci(r9, 0x0, 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, &(0x7f00000003c0)="66b9800000c00f326635000800000f300f07660f38811265de3e290bbad004b010ee0f20c06635200000000f22c0baf80c66b870bffd8c66efbafc0c66ed0f01c3baf80c66b8ae5e3a8066efbafc0cb82a00ef66b9800000c00f326635002000000f30", 0x63}], 0x1, 0x1, &(0x7f0000000480), 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs2/binder0\x00', 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000000280)={'erspan0\x00', &(0x7f0000000000)={'syztnl2\x00', <r10=>r5, 0x7, 0x7800, 0x67a, 0x7, {{0x6, 0x4, 0x2, 0x29, 0x18, 0x64, 0x0, 0x6, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4}]}}}}})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000023c0)=@newlink={0x38, 0x10, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, 0x41000, 0x1}, [@IFLA_GROUP={0x8}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x10000}, @IFLA_TXQLEN={0x8, 0xd, 0x80}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040051}, 0x24008080)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000800)={&(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000740)=[@mask_cswp={0x58, 0x114, 0x9, {{0x1, 0x80200000}, 0x0, 0x0, 0xfffffffffffffff8, 0xff, 0x9, 0xffffffffffffffff, 0x40, 0x4}}], 0x58, 0x4044004}, 0x40)

1.397907884s ago: executing program 0 (id=2169):
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
keyctl$join(0x1, &(0x7f00000000c0)={'syz', 0x0})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000340)=@newtaction={0x1a0, 0x30, 0x4, 0x0, 0x35dfdbff, {}, [{0x18c, 0x1, [@m_connmark={0x188, 0xd, 0x0, 0x0, {{0xd}, {0xc8, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xf1, 0x6, 0x5, 0x1ff}, 0x5897}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x80000001, 0x7, 0x8, 0x6, 0x8}, 0x10}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffb, 0x6, 0x6, 0x2c, 0x3e}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x80000002, 0x5, 0x3, 0x5}, 0x300}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x6, 0x20000000, 0xd90, 0x342}, 0xb}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x1d, 0xb8, 0x7, 0x3, 0x7}, 0x9}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffb, 0xfffffff7, 0x6, 0x5, 0xe}, 0x6}}]}, {0x94, 0x6, "0cc9cadf16d0915b0495ce321520ce62d6e34e3ed2ab45b0f9ffbd049eccbee4416d2e4f3630d7bf8521be03cb8d7235597ada0583e3fbf2a0df3a78d45a57468700ee20ea349baf1da3edfee2db79d89fcfa1e0da7371e21a46a030043f0c8b583f063e71e4946bbb022f76fccc0e79a8b4054045d9250c1edffd0af7603a3f6cf8ac91c5fc63708d24b928802cb428"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x1a0}}, 0x0)
io_uring_setup(0x1b77, &(0x7f0000000500)={0x0, 0xfa1e, 0x1, 0x400, 0x179})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x22, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
getpriority(0x0, r2)
sched_setattr(r2, &(0x7f0000000140)={0x38, 0x3, 0x8, 0x400, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0x118f, 0x800000}, 0x0)
r3 = add_key(&(0x7f0000000000)='big_key\x00', 0x0, &(0x7f00000002c0), 0x0, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r3)
syz_open_dev$video(0x0, 0x1d24, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000000c0)={0x4, 0x2, 0x1})
ioctl$KVM_GET_DEBUGREGS(0xffffffffffffffff, 0x8080aea1, &(0x7f0000000240))
ioctl$vim2m_VIDIOC_STREAMOFF(r4, 0x40045612, &(0x7f00000012c0)=0x2)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000580000/0x4000)=nil)
mremap(&(0x7f000081e000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00007ff000/0x2000)=nil)
io_setup(0x2007, &(0x7f0000000980))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap(&(0x7f0000e43000/0x2000)=nil, 0x2000, 0x1000003, 0x20000000ec072, 0xffffffffffffffff, 0x0)
migrate_pages(r2, 0x3, &(0x7f00000001c0)=0x7f, &(0x7f0000000300)=0xfffffffffffffff1)
socket$nl_generic(0x10, 0x3, 0x10)

954.719378ms ago: executing program 2 (id=2170):
setuid(0xee00)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x8, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800000000000000000000000000008510"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000007c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(sm4)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001280)="b7f2288a911993f08d3aaea2bc0000de", 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x4002, 0x5, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x4, "96597d00c5c0577eec4f99e3a24dd89fb66655d7b05291cb", "af6af5116bf52dbb91d30ae25aab828a961858f6c338a29f34c53e0526788e16"}}}}}}, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000002c0)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0xffffffffffffff62, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48)
ioctl$TIOCSCTTY(r1, 0x540e, 0x400)
r4 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000006e40)=[{0x0, 0x0, &(0x7f0000006f80)=[{&(0x7f0000000000)="cfb36e6d", 0x4}, {&(0x7f0000000280)="5996948d57f50ebc57527832511e2ffc7063beb66f2d9cd9f69e77a0841f66d5877ba51bb9a27e13e848f77256caef4ee3f9336a14517f91aed5cf1e3a4f63374412758c4c561afc47e47fd80ef2deed11dab45ba32dac6df1cf23736a3299dbd7620676e484e58e4d4fcdd35ba065695ba6aa6134106889247d31140c0f24ec6c71dc2b58d0ef859ec5ab6d", 0x8c}], 0x2, 0x0, 0x0, 0x8001}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@loopback, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@loopback}, 0x0, @in=@dev}}, &(0x7f0000000180)=0xe4)
quotactl$Q_GETFMT(0xffffffff80000401, &(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, r5, &(0x7f00000001c0))

952.386665ms ago: executing program 1 (id=2171):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}}, 0xc000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b04, &(0x7f00000000c0)={'wlan1\x00'})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
syz_open_dev$sndpcmp(0x0, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=@newtaction={0x168, 0x30, 0x800, 0x70bd25, 0x0, {}, [{0x154, 0x1, [@m_ct={0x9c, 0x202, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x5c, 0x6, "275edb59427417d79848a97395e0db32e0d693e702d5b2070e3cb86e046fc92b5d6b265f17a44243e4f6ab4e8e967a3430a92446f52558a6628e01111619150b64aa827840dd67f0e5ee4f0f3264f130eb47f83a98afe3b2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_ife={0xb4, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x8b, 0x6, "34444c2dd971fcae89480ef08197f623cc0af7d6567caa4f0d03d60ae3f7c91e400eef6d789a26765ced7821af6371bccd82c3ba2392810bdff292a1d73ada40fa0621860f5690fed28f926cc881c05aa10c7cf4df81dc4649f5b14167eb1103bdacde381cd38be890178b9856192d1d0701788c047c7c1df872ed93e71d9da096d14a5547296b"}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000080)={0x980000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f911, 0x80008002, '\x00', @p_u16=&(0x7f00000010c0)=0xa5b}})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r3 = openat$sndseq(0xffffff9c, &(0x7f0000000280), 0x32282)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r3, 0xc08c5335, &(0x7f00000004c0)={0x91cb, 0x2, 0x1, 'queue1\x00', 0x5})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000', @ANYBLOB="15fcbd21a382f3be00d03f53821ad8ecaa616d06d2b632541c6b612f8ef08b6bc2533bbe644e89cadf1314aeb3c7542b101664fb75ecd2e4ddca6ff99929887cd08699895e7d67c7ef10dd4e2726f9b190eb0ea70db42d83cecadc0137df57251c31225fcfc732b4d13a126c5476a890ae2b625b3fc36f22b69b272b61a889a4cf0aec740573b58a473648b0c50b83628d296cfdc58cfa1df253b9163885ef13853dfe0d6a5d03d1fed135820aef837fd6e981d2a4053ab0643994", @ANYBLOB=',group_i'])
keyctl$instantiate(0xc, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="6e65772064656661756c740d741275738965643a7379b120303030823030303030303030303030303030313238008c0e5bc385411f53d821fea04e08fb725f96a188e036d470e6aea8d5fec2a0252ba250f391c26552f5fcca1b2cfc98b7fec949c70fbace79db408c2887cd1ce5ea466846c12f9d036c3f41aa78eb417b77da432f3470f8aeb40757e1ad383648e04353371cc48c2d4f920b93e0f89d8b6aa2871c857485f024a40912ab34ede1ff1c367b8097c59b539ef5"], 0x2d, 0x0)
pselect6(0x40, &(0x7f0000000340)={0xfffffffffffffffa, 0x0, 0x8, 0x5, 0xf8, 0x1, 0x8, 0x7}, &(0x7f0000000580)={0x5, 0x0, 0xfffffffffffffffe, 0x3ff, 0x200, 0x3, 0x6}, &(0x7f00000005c0)={0x40, 0x5, 0x5, 0xfffffffffffffff9, 0x400, 0x100000000, 0x1, 0xc6}, &(0x7f0000000600)={0x77359400}, &(0x7f0000000680)={&(0x7f0000000640)={[0x0, 0x81]}, 0x8})
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r4 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
ioctl$IOC_PR_PREEMPT(r4, 0x40046109, &(0x7f0000000040)={0xf0, 0x2})
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000080)=0x2)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

829.743489ms ago: executing program 2 (id=2172):
syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x7, 0x1, 0x2, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x2b, 0x0, 0x81, "", [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x0, 0x0, 0x0, 0x4, "", {{{0x9, 0x5, 0x1, 0x2, 0x400, 0x0, 0x2, 0xa0}}}}}]}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x201, 0x7f, 0x0, 0x5, 0x0, 0x8}, 0x1b, &(0x7f0000000080)={0x5, 0xf, 0x1b, 0x2, [@wireless={0xb, 0x10, 0x1, 0x0, 0x80, 0xa, 0x9, 0x101, 0x9}, @wireless={0xb, 0x10, 0x1, 0x2, 0x21, 0x41, 0x1, 0xf, 0x3}]}, 0x4, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x40a}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x82c}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x1404}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x820}}]})
r0 = syz_usb_connect(0x0, 0x3a9, &(0x7f0000000200)={{0x12, 0x1, 0x201, 0x81, 0x49, 0x46, 0x40, 0x2040, 0xb123, 0xb6f5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x397, 0x1, 0x5, 0x7, 0x0, 0x6, "", [{{0x9, 0x4, 0xee, 0x6, 0xe, 0xaa, 0xec, 0x44, 0x47, [@uac_control={{0xa, 0x24, 0x1, 0x7, 0x19}, [@output_terminal={0x9, 0x24, 0x3, 0x3, 0x401, 0x5, 0x5, 0x7}, @selector_unit={0x6, 0x24, 0x5, 0x1, 0x8, '/'}]}], [{{0x9, 0x5, 0x6, 0x0, 0x400, 0xc, 0x8, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x10, 0x81, 0x7}, @generic={0x1a, 0x23, "6833f3c6475cdd88807888b527051bfe1333c28bc64fb275"}]}}, {{0x9, 0x5, 0x8, 0x4, 0x240, 0x94, 0x40, 0x9, [@generic={0x56, 0xe, "142d0e503fbffde9becf7805e4468c8bc97ac9b97059c4cd8d4a66424ffd4c5323e681be391287797680dc5e0c7315df688817d0e0760185fd6d3f5e271813d5d9fa3503f0bb20c2fa01cbc295d25369dc26820d"}, @generic={0x88, 0x21, "474abce15efe2a48a73f11d85fbdcd52ed953fcf4a51a20eca85385a6c94f8f44aa2760b0a8f81607b268b3bc3563a41ac4246e66064c0117f6876d96a253d8b7c281195a09ce05b42871cc8893925f705aa4837e1f7f808073f1b4756a11e0b776682298daccb8793fd50c4f9abc2fef59c631f27e5fc8c67f7724496ae6e10f4277b63630e"}]}}, {{0x9, 0x5, 0x80, 0x10, 0x3b7, 0x9b, 0xbe, 0x2}}, {{0x9, 0x5, 0x7, 0xc, 0x20, 0x1, 0x1, 0x7, [@generic={0x9f, 0xc, "2c49651a52f7aa6e13d999ba505769058c66fa668cd9f6a33ef95558a82d5b4c11095618990a5bca14395729e36aab3fbff80c0cd4aa702852a328c735a5268001cddc82c677d548fd47777d8f942999bc6241e896b20eb0cbb5a471044f07f9582420b8ce8f3a431fcfe8fe3be61ff0c0223a7bef11fc2faf4a00f77b31afb707ba7117bf39c592299bd4c61be2b134bc27ae01ee8fd21bdf775c0757"}]}}, {{0x9, 0x5, 0x84, 0x10, 0x3ff, 0x0, 0x7, 0x81, [@uac_iso={0x7, 0x25, 0x1, 0xc, 0x5, 0xfffc}, @uac_iso={0x7, 0x25, 0x1, 0xc, 0x0, 0x7}]}}, {{0x9, 0x5, 0xf, 0x18, 0x3ff, 0x2e, 0x6, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x4, 0x0, 0xcc5}, @uac_iso={0x7, 0x25, 0x1, 0xc, 0x3, 0xf}]}}, {{0x9, 0x5, 0x0, 0x3, 0x6c7, 0xe, 0xc4, 0x3}}, {{0x9, 0x5, 0xd, 0x2, 0x200, 0x0, 0x0, 0x2}}, {{0x9, 0x5, 0x2, 0x3, 0x8, 0x7, 0xd, 0xe, [@generic={0x87, 0x23, "1e8386fe74cef9472b4ac836bc5816dc9d05d90f326f19e2a74e38ede1d00834bb40de5a9aa19570788ba762c17ae0e6e5d30be6e9fb06a2c100ac5e7bb5b7cb3e604d2378a6726298ae71c20774e67d7c068a75224dd1ee13e7b1b856b714c786c788e41033aa674c8515ab9ac0048705120a6086b14b51e9e9d3a6919327ba1737ff7f28"}]}}, {{0x9, 0x5, 0x1, 0x3, 0x8, 0x5, 0x5}}, {{0x9, 0x5, 0xb, 0xc, 0x0, 0x7, 0x7, 0xe, [@generic={0x98, 0xb, "86597de23439fa9d665c041627159e24fdf0c25d25c86d3b5dca7dce37984c6f2662a3a1029c750b66c0a9a3f70539889bdb1edff99229ee5537629d257c62e70a96250717b140a59167a3b358ff760f70fea8922b4244676b0f1d970e1d9849f701427e7c1453cf9304c55c6941cdea6dbd75e8d493fe0bd6bf92fbd52c8481fcec2d2b57628da171f2df0fb5b7539386abc4262522"}, @uac_iso={0x7, 0x25, 0x1, 0xc, 0xf3, 0x1}]}}, {{0x9, 0x5, 0x6, 0x0, 0x200, 0xb1, 0x22, 0x9}}, {{0x9, 0x5, 0xd, 0x0, 0x40, 0x3, 0x1, 0xff}}, {{0x9, 0x5, 0x2, 0x8, 0x3ff, 0x2, 0x3, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x8, 0xff}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x0, 0x9}]}}]}}]}}]}}, &(0x7f0000000680)={0xa, &(0x7f00000005c0)={0xa, 0x6, 0x200, 0x5, 0x0, 0x7, 0xff}, 0x1b, &(0x7f0000000600)={0x5, 0xf, 0x1b, 0x2, [@ssp_cap={0xc, 0x10, 0xa, 0x0, 0x0, 0x43a4, 0xf007}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x2, 0x7f, 0xb, 0xffff}]}, 0x1, [{0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x1c09}}]}) (async)
syz_usb_connect$uac1(0x1, 0x110, &(0x7f00000006c0)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x68, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xfe, 0x3, 0x1, 0x7, 0x50, 0x7, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x4, 0x3a}, [@mixer_unit={0xa, 0x24, 0x4, 0x4, 0x5, "36db73bcd6"}, @input_terminal={0xc, 0x24, 0x2, 0x5, 0x402, 0x6, 0x2, 0x0, 0x0, 0x8}, @mixer_unit={0x8, 0x24, 0x4, 0x2, 0x10, "9d0a60"}, @selector_unit={0xb, 0x24, 0x5, 0x4, 0x4, '^PV\f\b\b'}, @processing_unit={0x7, 0x24, 0x7, 0x4, 0x5, 0x1}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_ext={0xa, 0x24, 0x2, 0x2, 0x5, 0x26b7, 0x4, 0xe}, @format_type_i_discrete={0x9, 0x24, 0x2, 0x1, 0x1, 0x3, 0x0, 0xb4, '7'}, @format_type_i_continuous={0x9, 0x24, 0x2, 0x1, 0x9, 0x3, 0x40, 0x2, "", '6'}, @format_type_i_continuous={0x8, 0x24, 0x2, 0x1, 0x7, 0x1, 0x1, 0x8}, @format_type_i_continuous={0xe, 0x24, 0x2, 0x1, 0xc7, 0x1, 0x81, 0x8, "bd2a19", "3556bf"}, @format_type_i_ext={0x9, 0x24, 0x2, 0x1, 0x7, 0x7f, 0x6, 0x7f, 0x9}]}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0x2, 0x0, 0x9, {0x7, 0x25, 0x1, 0x0, 0x8, 0x448}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x4, 0x2, 0xfc, "4937c91855"}, @as_header={0x7, 0x24, 0x1, 0x2, 0x1, 0x1}, @as_header={0x7, 0x24, 0x1, 0x99, 0x6, 0x2}, @format_type_i_continuous={0xe, 0x24, 0x2, 0x1, 0x5, 0x4, 0xfe, 0x3, "9c995d", '#`k'}, @format_type_i_ext={0x9, 0x24, 0x2, 0x1, 0x81, 0x4, 0x2, 0x6, 0x5}]}, {{0x9, 0x5, 0x82, 0x9, 0x20, 0x6, 0xf7, 0x23, {0x7, 0x25, 0x1, 0x8, 0x8, 0x4}}}}}}}}]}}, &(0x7f0000000900)={0xa, &(0x7f0000000800)={0xa, 0x6, 0x310, 0x8, 0x0, 0x30, 0xf7, 0xff}, 0x2c, &(0x7f0000000840)={0x5, 0xf, 0x2c, 0x5, [@ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0x0, 0x3, 0x1, 0x7, 0x2}, @wireless={0xb, 0x10, 0x1, 0xc, 0xd0, 0x0, 0x2f, 0x1}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x4, 0x9f, 0xb, 0x7f, 0xde, 0x10}]}, 0x2, [{0x4, &(0x7f0000000880)=@lang_id={0x4, 0x3, 0x742e}}, {0x10, &(0x7f00000008c0)=@string={0x10, 0x3, "3967b35d3d431fc3816e99aaf436"}}]}) (async)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x32)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000940)={0x10200, 0x1, 0x41000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) (async)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000a00)={0xc, &(0x7f0000000980)={0x0, 0x4, 0x34, {0x34, 0xc1f99089a9eafb49, "04ec80f1790998caa9d48887c428e349740a6d6e0ebb590201a750ff92e0f877ebf2dbb1cc8f4754cafcacd7a3ef3cbdd905"}}, &(0x7f00000009c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000b80)={0x10, &(0x7f0000000a40)={0x0, 0x6, 0x86, "259cb48178a300f17a580387186b73a051013ca917f5c6fe083eed25bac06b25d0ca90472c1e65c331491ca3eafc443f229977e0d7eee37abc244ac4ec58f3f4e10347aba53d4e4a085cfd5285a9bee8203aace16fd03d6b92a9c24f9680b3e9acb450b3f581f188745e6dbea935dd442ece60b9e2be2bbbeddc90d70a928da6ae28104321fe"}, &(0x7f0000000b00)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000b40)={0x0, 0x8, 0x1, 0x3}}) (async)
pwritev(r1, &(0x7f0000001fc0)=[{&(0x7f0000000bc0)="f909426a4332deb42cefd60303d74fb970be76a05e06ee8604596ef19d38e31e6c1b0884dbbaad3014eb9a068ab8935f1cba65c4bc48783dbf75d39eb2cdca60cb428525964ec5357ce50e0be0743a7577ba99f39fa1c48342153e73f4831900889dacbca9c1f2f89205cab3323f0cfe469abb060c7f248e965868a25178403050670a6dc12f4b3c6086aaa3ce24685a2e060efeadbc4e803cd5d3516ab4c2e4a2477a5389b04872aa4d9999d32bf413a3528e39952c2d827cf31c1e5a1eaa44a950e7a56505e74afe2f760f99c43f9be683ed516efcdb38f850deee306f08da9ea74913d823113784e1a945e83b", 0xee}, {&(0x7f0000000cc0)="2275f8c2a39ed7df162b5175ca56b8cb74900f6314687de6c93ca457b0cc9388b4a249e66f9b7966a4f378d816310c86e09caf0812632bca231df06037e3d754bae3d36cf7a8e2304a44608a986068fa70b6541ee0a6bcaec1d1f46a07698bf2c662589843d702d62514425b68c6add94b422fd1353915b6ba8fc2c231d67bc22abcb4b0aeecda399b8ff041703111ebc68b3410a449cd621fdf2dca35c1b43abdd618281a324ce4b1863c83c69c544d0ab8db8ef511197ce9ad7640a7729ceaa68cddc8b5ced9a9c4cfe37ce4a9", 0xce}, {&(0x7f0000000dc0)="782bee16a5d0836d6d7522e23716b84aa2e9e20e1cdc10fd37b5fdbe7e00060c53b7e1b628fa9dbb81270ad459041edecae28bb8fbff1bff9dce90ac28705fc30478406e48db262a1f884ec7500077b394cabc458439ba515ce566a6474d467161579a99641c6bee1852e697c067eacb0f6a10c1f422578511fa8038427565fa680ce3af19a6b06fea08c868b5696b6280758fc1e01c2c5997d669d2f563953530a68b76f803f1ac281719ab22376b50eca135bfbc3d6e24ab2cfaa6504297cbae976e5edf00c6d3a219a9d5cf4dcc518a487d88e2094335be91fb94968cf6bfe36c67ed4fae31f2bc66b1bd3c130ee6fd577c5278532ebb5da1f95aa7fb399662359fbbad61df7478022289e3ef73761d84aa13a43c28ec0fbeed6212877dc2b863182d4a7c63bba006d96519ad07150a0174303764d0710cecdcccb8fc4c98325393d32ba64cb49871fa84c0cbc3eefd99a56df0c4ce43487aa6f90cfa505f59f9cfa38f82683060f5aaa6422dd033c2d05375d15d6c49dc49c2ee715e0e34dee78e21f9790300cafa3598a41098daf32baf8287f8bddcc060d31f2181ddfb72e389f83ec6e668feee8736657d18377e161526f05ea8e525012d4bb8a9170700f4b399eb86618b150c64dd7da4fc7b9f1b8f16410f4b0b342cb1093ecabe82a6a928244591ca142a2898651f885359187bb03ef026d4463417cf776a165f5015ce8db6672f0dbd7d1fd3d0d66a25f64a12e48b96e6fc6e65ba73539aceb6feaa2d29f4e1075c0819daf3af174c4453dae07e4b7a2e2eeaf824cc75ba66b8bff098f68549b34e7de74d934e68a2a2d876fb0962add56a1c981555a45c7be33b19ecb04a3e74323bb86a5cde0fc444f3483b08ec80a080a0e55db428a6493924eba4867c706f18ee71e71d1bf38f3cd9166aa08a201478a1cf5aa65d0904d39c533399f85ead22dd650f28231f993472c62e290d31f818424e6495cf83abef798f18af7a425b4cc0370b98edb2a374267210b6a8bb420c72859644a653e29f658883caa8bdf17f3613fc956773a92d3ef8366a094072eb62eb93fa8dc8b5bd83ffa3f2a841e1d3fd5d4ec3f2aed6664bf14b8e4af3d553b9ea78c523126d35d48db970c38c5cba9e870e8f43a16720404728b60bfd243d1a99146e893c0e0c27bf42cecef9ac20ea50aae10989c84cb6176dea6fd8786fab1fe1a73b49a239040e15b6b6c38c4ae21fbb9e3894cff200bfc4ff5587666042faa5cd6f658c87fc5761695369e45b21a6bfc3cdd5ad5e44255fd4bde140e025db4db4d6183f286f2caa3dcc306dc91112c9df6729cdf2d035f8a18abc2df16b570b08351d70f88e6c96d2b8909a297837f80bd8fd54dfb14ae28e80d7afa5290afafa0a4cc1d7530d0131af21bf43d76cbb2fe8b6ebbd9290370552a07bce3f96e61bb6e851a59f22812fa8d027dae95173c9600be0ed3c9914c9e306eac6f8fe8b997b9cc6de6640a5e479d0556169c54e5543c70fe9d5ef1cd0b2d2d767eecb3918cd0d5fe9c6e9704cfc9dc839674332798e128f6724a36f80bef5cef2550220224c1fe8186285a523529ee635eccaf2b17ea56f988417f2a14c9dc0faaf9c920e38074ace9d2ee9b9e05ce36e791ced54e4bbaadf62ddd6ace48197ce544573347d348e6d4fdc1ce41d712fbec7736f9b1d79ba189e6a350ceaa19b896126686d3be30c080bbce543e0feef69a9d5b4ea17f9626341ca74825359113a0fd6eb21b2213779ca56d05ffeefef9e16112715ed99899aeebdae8c52c49a611232131939ec8a8710c6292f6300c259334fbf0a3b4f1dc36cce4b8f60a1e869294ee6424d0cfb5a7c54498e0c3f53abfe0497784c1e10ec5177f64da0bbdcc8e60009f4a92666757158bac58ea3520e7beb60a18b763a9de1fc54798d6e882b24fb3ec04243cf1266c79517c2a0c8cb4fa3c512d02286340aad13ef1728f29f20659015c4ebdb44263d88b52da9585f82bd2bd6afa0288b15c5e5f5b7059afd088e8b7690f2c8d29fa4aba5a691a2821ffe267cbe45814484bcc78cbd96e0dadda81babe5c0b2bf26b420ecd077ec7ea91cc4a1010bd60dc8d0bc3bca475e31634fa3234fa4815fbba234c7ec37b532e0ce99b9f660807b9f2a2a8d403fcf157964c5fe2e2dc1f8c798fb7abdbf8dac74db117b4206df5bbc0968b4ec91f12db03f57f427ab48ab2f02a00420faca61a0215abf3fa2ebada45ee3ca66bbe47cb5f8fea1c50ef564fa52a8a66f60feb435a22ff2ab94e3f905a95e0c65097191a56207178adc1cdabf632bfc4ab449727c98c59ecc22300cab7b91791eac66c1cadb3d40af9701ed74b0928cbf6d895c656fbbd4ddd4d5b133430e3a880510462abcd5f9e30f89ee748611e1927f3e02413a0819881f5aed750e246a9a7483f8854020739ca65ee3c929e01a2aa3cbcda5cf5a9951555936d618556d8a90729b1a3b2bfda94bda733bb1899d98adb6d84e50a487dffa83e33c924f184984060977530317ed84cdcf58bb0e48fe70fd9788e9ffe377e8456063fda5e61c5849efd3dc484c5f4f0eeb18a24d48b2dcfa9b0365296fee8a0f8976a385f35d3135d9378c420ce0771bb60374bee2ba5559fb8ddd0eec3a4ea9e321a8defb6a09c211e648bb68df361bf3bf2fd8c10c2863a5e0646c4267a79f88a80af38c9d331d72c063da12aac77cad60f50a9db8725765c661548a5fbf8452646bfd33489c35705c6e6464fa44494609ee089cdeda148c328b5d616f1eac6bebc9ff9f4f1aab63fd7ffa4a5d5832c1b50b26e60a6340d39b4b52f19622db6991dc19f8421d42ec3236e51e842c9980745fce8316e2f0f5594611db9dd1d6ef3820a640a232abbe66d9c7357aa8cc2387e837f5a9eb0625089ed0c15d6ec9528c2048cbdedf4ada40a394e5a32aa76c1583ea755d08d6f20b977e4a58355cd6bbd4dd178f110e5deaa68979146fe9ca2caa6b712b126416a8d145396d60f2bae02d02fe218a6bd35f53db3d1afc47717c1c239bbaf7b636edf7c4fe6ebe91d8fd28e3c552fe5614e4385894edaf53cf8b490e14876894be941a221ab59674210c44bf70599cee0c5ec502199954247ea50d116c9347506a128b610ff8dd3d4fef67fb6ea6506cb9ee3aa2e73d8cf86ccf17c54a53988d27fbc21dc66c8e64de3c4684459371250baed98c0188970f4f192369d965cb79a85bed0ac2f359decdc3839a578926291bb12f3ff5ea27c04b754a0239c0e134ecf96ff35055d5954231ac52d26a2de48b6528116c68bb52927c6d3a726eaaacf0aa9b3ce53afc617e856af07406cfa4f12e3695279532a89888457276c545e95cae8e2e68739852255c7bc2b4f5311cdc6aabe833be3a304b76ef76016f1f21f3bd5f3653255f5daa6e21033ff404e689133544234d7da9a97a4a7096a24d9959790ea8471ffd39c973103d6c46bc41cc4ad7270391d04d7795ca2779c6b3987ce96db13d684238452783087c76555837b3cef4404513d1fd7ec82908960af54d1d5b7c0a8fdd15a177c2a3637d710b4d8bd5d5c88ee93bc5d347e43cb7ebd6ec6c0264ebc10de974ba1757b2759b3bd517bf5105063ca0e7bbcc2078329db35ca60e90af139792ab1475ea51536b44326bf4b950a887964a4d58935c36ab0180d7b81aa78e4325e36f95657c8fb196de278fbac112d47dd5de54ed0757f6c4fd37401233f96c22e1b92f8615a87104503676c3a91040bbda0e94706ca0fc57247a3a6d46a2888dbc6bbebb54e0bafa62975245da7dcdcc722e58966048cbf7f22192809c59aa54657e586200a7b0ab84000287bcb608c76574de82687faad3e99d90119463848b2da598c949033187f8d0c5aacb39afb3b4624b1fc3732d8c452e77cc62ffd6ebce25628d7c06ec1eda8576f06ab9e2aca0ea86d62bcc112f9f68adf08a5e020a470a92b73ed9a6f735b16f1cfd3fe58b8f81cc83ebf9c6054e6078ce49e2448c8f4fb63bc7c89e56a19649f6cd3c0c0461c2dac03deae1933ff589bb26df0d65d391d19d26cd5bb6af5963baa33f9e933e07d96fca480859f1cc3152ad1bf0a1405878ab772d8111762c7735fc5ab9b8982cbb6846f6dd5dfdbf2ac6187ea682ec876066db998488bd4d8ca6d501f41a0a29a53129ff8daaa4fdd33780d7de4c52dc1fcd9d30ecbc2529b6b916ce0142dcabf1ce2846910d59122e6bfb54092e24e03693779a9b863d9586c4d0cf93cf021d1b993868242544570718d02b975a22d5658a14c75ab6a07b729b1ae0a980661996f830c9a04697e82dbd0f67f3ac20b028f21ce80edd7a7790b0825bab7aa012310c7df27123e1a362ac8440772bb3138948fa4152fdb91c54b9145db4410b5778bed1d1beeb74fd135385ab51ae7b24663e3daef52e1e15ca51490f1bd2391a750e5411a44822b2be4e7cb029124e555e8be46584dd71b01d3659eabbd85d0d79f0dd14e1ddb785bc274994ed65cd0e160dbcb23b0fc9f1797a6fa014f0cf451abd9c869a045f766734351927d78aa08e22c1db956cd134b7954a5454b42ba6ca262593f5e9f4653beab282f1e2fc0c310677994be143d0d6d87c3b0fe43cb851a33474f1c0017702cc66585d503bc1d8707af26287bc979ce1959ef809887b6cc6d3dfbe4dd732fc0ef4c4340effbf7c97a0e07424469a6fea74172f5820fe339071c7bbf77b0b88251407e7d91f39db7a0faf7969f3a74e2ee633f32b8efe324cbc27cd982c31e9b7b8eb4883676de5f5c5beef9871eaed7e0d6857f29901fb910a4fde9597cc0655af4b1a62dccbd1b4e7fb09daf991cebb8d623bb8931ad94985ab6bd23ee97f67199d764b27134840b97b6b8273017b8a6356984f27a7ce53f79d467b0552ad9f5a7c05e881a1e2418af83c4a5ec2300a73d4ac65df630f596ac9358638038664b03bf5950da3514254a6a56b166b9b38446c3b890fb77478fd55f749a16d96ef5622bdfc6b9c1f2c3db8fcae0d8e1ed8ce5b736779e0f2026f079c078490ce1cb874ea4ae6a7480af6bf9be4768eeb12ddf60711b9f08da4dd31edce3775056a3e7e4554395792ab2b0d4ef88d02cf58f4a8d7e9f63bd213e234d5bec1fabf1e5a7d8e1601f489471417de6d149ecd0397616baf9cfd6615be650586809ea8fce5001577a2c1f41779182d580c287d88b15ac5bb750ed74fa6591eeb7d5c3e53fb058eefcb1d63d48ad7a925ef93a293c4cddf81a3a0d21a117767df8086540135b50414738ee60c02edcc6590cfa3f6af754f3e02f7b037532f405ffd1c10adba9de6fabb3deef4bfeea7a637563ae04e6c1353a286942f5735835df0d293e4cd32d1089725c4302b3865c03b1ae8068f6b128d418659bcb2d8bd5c2475c253f1f533fd070803b3de05736e3b3b2519710c2816f0b1cd6e9deba98f4ab2789e94ced9031debf7053d2913319f0d4d82a64d62820c8afac61f1cce4f6f8fce36b051f812aacfac4c0545bb91555edb55bc528716916ebb5c26d364b59f10acc1c8cc706b6e189407f6338a4c21ef891c1415593676d65266df3510a964944d92909834e4f45088e7ff20c31193cb8a2487ef311cedfe6a1ffc5770d656d84a5b7e0d5046ef889598d9000fd8c96d0462698da79d156e20f15be182633296255341cad82c0ad3ab98325d093af1ccd89e10f6557a15948673a02bc1e690b6bd537dc5b73b67ebc64dabc2b8f75e6b5df63b6581f9b06579bcce71b36a13e8ba43839553942f24c8e4b5ef231c1e557f36289e5b126016", 0x1000}, {&(0x7f0000001dc0)="138cac72c2a0d65567a235b942f321144357c0fbe5ebbd0bd057e8ba9163f45a3572b49f36fda4a4644ace1f2cb6387f1ccbdbdd8e689d9224b872f39dd11c54a24c3f22247a94caa79c6dbdda78b11cc2b7db438b228ab7cfdd2a5bfcbc7238e402c1c2275ac79b5a69928d08817d732d2d9eab34ed413a67822a20c7", 0x7d}, {&(0x7f0000001e40)="d4df840b52e9e4a21505321176457e36dac5847423dce2bdeabced", 0x1b}, {&(0x7f0000001e80)="53fedf878f77726aea627f054a5e0a869a09883a8e8caf1fd6ae07854d3ae22352f1514986962f20d4a39ee520987869114b4950b079334982215d465bdb3906d8c412a1387eb36d93ab3f7af58896717ba99ad64439b6de69b8d3d4558bdf5c1b13f64e20382f033ad30e98164f4f0a225c25bac302aca2ee4369ba45bb4d714a5698a047938ecab8efdcd8ef0d7fc28e2dbff5adcf883c8c0fb7f28b55", 0x9e}, {&(0x7f0000001f40)="103d78f050a0e25992c521c07bf651af21c711877b483eeba1f2bd8d1f8b48169dc652028ebc2ab75890d2fa155201fa9c4b15a1cf0fa90115fddc761c88cfa099417c9d2d7a6b9e93327a2dfacc146aafd76635e2e7a8a6372a2b97a1ccd36c529b90659521e5a4ae", 0x69}], 0x7, 0x7, 0xff) (async, rerun: 64)
writev(r1, &(0x7f00000020c0)=[{&(0x7f0000002000)="cf1a329e23d941af6fe2ec7a9dc2c92373b562dc512054a7c4d5bbd31f02986569bb1fa689c38ec88f71a335e370d2e0d9d4eb6ba58315d62053dc8f64a887cd5d2bfe09db5f0a1f3490ffde2937778f791c303fed11cd13302889aeabd6c3aa4d1d0b4a79", 0x65}, {&(0x7f0000002080)="b3fba42130829b1c0d0e8ffeb3f085051e71d68855863b90ffe12909958acb", 0x1f}], 0x2) (async, rerun: 64)
r2 = dup(r1)
syz_usb_connect$cdc_ncm(0x2, 0x75, &(0x7f0000002100)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x2, 0x1, 0x3f, 0x100, 0xfc, "", {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "87af79"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x7, 0xfffe, 0x7f, 0x9}, {0x6, 0x24, 0x1a, 0xa, 0x16}, [@acm={0x4, 0x24, 0x2, 0x8}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0xf6, 0x5, 0x83}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x9, 0xfd, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x1, 0xe8, 0x1}}}}}}}]}}, &(0x7f0000002380)={0xa, &(0x7f0000002180)={0xa, 0x6, 0x310, 0x4, 0x6, 0x2, 0x0, 0x4}, 0x5, &(0x7f00000021c0)={0x5, 0xf, 0x5}, 0x4, [{0x7, &(0x7f0000002200)=@string={0x7, 0x3, "f49ece857d"}}, {0x4, &(0x7f0000002240)=@lang_id={0x4, 0x3, 0xc8a}}, {0x88, &(0x7f0000002280)=@string={0x88, 0x3, "665e1fc702e42bd62563bf73f48393f6b9d7010c397094a75392c5490aaa18900428d2e100c0f47d70762feb0a61fc0c88e4c5415d04f5f93c19dcb2326812609f860d4e07741b25bbd03d1459c40458eb21748b3dd18c34556efb0defaac2e30c20641c7b09301e8392d098491d650c61b774b92f1cb7800c04901c6f032d46866e0428bde8"}}, {0x4, &(0x7f0000002340)=@lang_id={0x4, 0x3, 0x423}}]}) (async, rerun: 64)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r2, 0x4020aed2, &(0x7f00000023c0)={0x1000, 0x109000, 0x8}) (async, rerun: 64)
r3 = openat$iommufd(0xffffff9c, &(0x7f0000002400), 0x8800, 0x0) (async)
ioctl$UI_DEV_DESTROY(r2, 0x5502)
ioctl$XFS_IOC_GOINGDOWN(r2, 0x8004587d, &(0x7f0000002440)=0x7) (async)
r4 = syz_usb_connect$uac3(0x1, 0xf1, &(0x7f0000002480)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x17cc, 0xd8d, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xdf, 0x3, 0x1, 0x7, 0xe0, 0x8, {0x8, 0xb, 0x1, 0x2, 0x1, 0x23, 0x30, 0x7}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x30, 0x0, {{0xa, 0x24, 0x1, 0x10, 0x26, 0x10001}, [@multiply_unit={0xb, 0x24, 0xd, 0xa1, 0x81, 0x6cd, 0x1000}, @processing_unit={0x11, 0x24, 0x9, 0x6, 0x5, [0x0, 0x0, 0x0]}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {[@format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x5, 0xfff3, 0xef, "c8eb"}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x7fff, 0x9, 0xa, "f47e"}, @format_type_ii_ext={0xa, 0x24, 0x2, 0x2, 0x5, 0x4, 0x0, 0x5}, @format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x2, 0x3, 0xcf, "fb54ffe9d3"}, @format_type_ii_discrete={0x10, 0x24, 0x2, 0x2, 0x1ff, 0xb, 0xd8, "8d614c7ee1d2ba"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x9, 0xf, 0xb, {0xa, 0x25, 0x25, 0x401, 0xe, 0x3}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {[@as_header={0x17, 0x24, 0x1, 0xff, 0x2, 0x3, 0x4, 0xff, 0x8, 0x2, 0xd}]}, {{0x9, 0x5, 0x82, 0x9, 0x40, 0x5, 0x81, 0x5, {0xa, 0x25, 0x25, 0x8, 0x5, 0x3}}}}}}}}]}}, &(0x7f0000002640)={0xa, &(0x7f0000002580)={0xa, 0x6, 0x250, 0x6, 0xb, 0x0, 0x8}, 0x30, &(0x7f00000025c0)={0x5, 0xf, 0x30, 0x2, [@ssp_cap={0x20, 0x10, 0xa, 0x2, 0x5, 0x80, 0xf000, 0x4, [0x3f00, 0xc0, 0xfeb0, 0x3f00, 0x8100]}, @wireless={0xb, 0x10, 0x1, 0x2, 0xcc, 0x12, 0x80, 0x2, 0x3}]}, 0x1, [{0x4, &(0x7f0000002600)=@lang_id={0x4, 0x3, 0x813}}]})
ioctl$SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f0000002680)) (async)
syz_usb_control_io$uac3(r4, &(0x7f0000002800)={0xc, &(0x7f00000026c0)={0x0, 0x2, 0xd2, {0xd2, 0xb, "c844d2489555c9a5d40256c19f7de1658b6d73586cdf47cc085ce5732ca71793a69e1dcd176fca20a09602bf1424721b03344c7c3a85e8253f3770943104ce52394ae2a8e9ed12b708f6f5a9344624710832171f110c4eaf4f6e3d33be7c6bb95977a0fa46c335f4442cd08125991b2542844fd2b74ec1ce4f4c65e085125000c477aecad7a2daa9d0923990793f620c5f004c4d40473a2941f715e542030d88edb99d1b13c455f736126314ff1ff138ea53b398bbea722cf08d8293392914a6a6604f3fc2a43c68a17a46024ede633e"}}, &(0x7f00000027c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x814}}}, &(0x7f0000002a80)={0x24, &(0x7f0000002840)={0x40, 0x0, 0x5c, "c82d810d297a539e83b98b63e2ffacb9f1d8f1433b972ba7baec5e9f57d82f9a6ebf0b4725a502337cd72464d9f7997a3b0dfcf245f4a7933e61baed6b4bd83595970b6934c6ec8eedf68f08e65b71e3555fd674a89bb66d538eb3fa"}, &(0x7f00000028c0)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000002900)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000002940)={0x20, 0x81, 0x3, "b5de8c"}, &(0x7f0000002980)={0x20, 0x82, 0x1, '#'}, &(0x7f00000029c0)={0x20, 0x83, 0x2, "7cd4"}, &(0x7f0000002a00)={0x20, 0x84, 0x3, "6508e7"}, &(0x7f0000002a40)={0x20, 0x85, 0x3, "135994"}}) (async)
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000002ac0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x38, 0x10, 0x4, "", [{{0x9, 0x4, 0x0, 0xaa, 0x2, 0x7, 0x1, 0x2, 0xf6, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0xce, 0x0, 0x2}}, [{{0x9, 0x5, 0x82, 0x2, 0x20, 0x5, 0x9, 0x6}}]}}}]}}]}}, &(0x7f0000002c40)={0xa, &(0x7f0000002b00)={0xa, 0x6, 0x310, 0x5, 0x0, 0x5, 0x40, 0xfc}, 0x5, &(0x7f0000002b40)={0x5, 0xf, 0x5}, 0x1, [{0x96, &(0x7f0000002b80)=@string={0x96, 0x3, "17bb0ffde1c20edf42cee11597967b32c531bdea76e55ad8ffbbcebdd278896789b4ce7e948abdf207ab85cc5d9bff8a027dc0fe287b4a7eca0ba02c0b0993ce9123af6918c4a0ccf4cfad91b0ffeb1f0259e1710393fc9465d981b6257f96ebd977cd0ff17e4353e0e4646916341efa1232f5184eff189b935e07e1d948945923b67dfb99e4f851b79580940df9ea22d3b65071"}}]}) (async, rerun: 64)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xf) (rerun: 64)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$pptp(r2, &(0x7f0000002c80)={0x18, 0x2, {0x0, @local}}, 0x1e) (async)
syz_usb_control_io$rtl8150(r0, &(0x7f0000002d40)={0xc, &(0x7f0000002cc0)={0x20, 0x22, 0x35, {0x35, 0x7, "6963d2b0fbfd2c88fa181e1b61e3945f070d3468790ada1716e1445245dad42668266e1f21a3305f3da6a50910cd4632b8c8e7"}}, &(0x7f0000002d00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}}, &(0x7f0000002f00)={0x18, &(0x7f0000002d80)={0x20, 0x0, 0x77, "517aabc44cfa254f761c915f84b466cc5a0bd22822c332a5526ee2a30339a6471690c1d71856fd57255ab95f1a86c64597f6883720cdfff1898b9c4b35f29a7adf6d5f8213847c440cf64d9760a0aad8f2ca727b05a6bef8c7cd7a1fed2e0e1d6b45af20effad05d7ce28c1c9d67ec865e25352d4a194d"}, &(0x7f0000002e00)={0x0, 0xa, 0x1, 0x4}, &(0x7f0000002e40)={0x0, 0x8, 0x1, 0xa}, &(0x7f0000002e80)={0xc0, 0x5, 0x3, "b3c636"}, &(0x7f0000002ec0)={0x40, 0x5, 0x3, "9b7dc6"}}) (async)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000002fc0)={0xc, &(0x7f0000002f40)={0x40, 0x31, 0x38, {0x38, 0xa, "576b608163c0194518a0ed25720b25ef63b536b147534b7412cad19865a9b1ba3e4a4602a9214e945068a9698223fd8168a4345489ab"}}, &(0x7f0000002f80)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000003280)={0x24, &(0x7f0000003000)={0x40, 0x14, 0x8c, "d028cd38d180b5717b53e23106c6940b7ca31f9ac82dcc2360362020dfaa7a181c2d73556c58fb983fb1a14218a2377e91deb609862d051ef3677fb5a8751d2d4bd1d4fa190b3767299b75b11d42785c27452196b359c988476a09076a23e268222e00a80e3a3714a2d263bd3baa63f44733792e21087692d81a4bf837a2ebfd685e8a08be702970b139ae4d"}, &(0x7f00000030c0)={0x0, 0xa, 0x1, 0xc0}, &(0x7f0000003100)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000003140)={0x20, 0x80, 0x1c, {0x6, 0x7, 0x50, 0x1, 0x8, 0x5, 0x1, 0x5, 0xff91, 0xf143, 0x9, 0x40}}, &(0x7f0000003180)={0x20, 0x85, 0x4}, &(0x7f00000031c0)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000003200)={0x20, 0x87, 0x2, 0x8}, &(0x7f0000003240)={0x20, 0x89, 0x2, 0x1}}) (async)
ioctl$PTP_EXTTS_REQUEST(r2, 0x40103d02, &(0x7f00000032c0)={0x7})
socketpair(0x23, 0x4, 0x1, &(0x7f0000003300)={<r5=>0xffffffffffffffff})
close_range(r3, r5, 0x2)
r6 = socket$l2tp(0x2, 0x2, 0x73)
recvfrom$inet(r6, &(0x7f0000003340)=""/34, 0x22, 0x63, &(0x7f0000003380)={0x2, 0x4e23, @private=0xa010102}, 0x10) (async)
socket$kcm(0x29, 0x5, 0x0) (async)
ioctl$XFS_IOC_FSGROWFSLOG(r6, 0x4008586f, &(0x7f00000033c0)={0x6, 0x2})

724.041296ms ago: executing program 4 (id=2173):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000012002126000000000006000028001a00e0000001000000000000000000000000fe8000000000000000000000000000000200ff"], 0x38}}, 0x0)
r2 = fsmount(r0, 0x0, 0x0)
fchdir(r2)
r3 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r3)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

588.682588ms ago: executing program 4 (id=2174):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000000)={0x0, 0x346f, 0x40000060, 0x100007f, 0x1a, "9f940b3491d052d172e0e573229ac6de50806c"})
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x80a02, 0x0)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000001880)="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", 0x170}], 0x1)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
socket$unix(0x1, 0x1, 0x0) (async)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x180, 0x0) (async)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x180, 0x0)
close(r6)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r7, 0x84, 0x1e, &(0x7f0000000080)=0x5, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syzkaller0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', <r8=>0x0})
sendto$packet(r2, &(0x7f00000002c0)="05031620d3fc140000004788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @multicast}, 0x14) (async)
sendto$packet(r2, &(0x7f00000002c0)="05031620d3fc140000004788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/key-users\x00', 0x0, 0x0) (async)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/key-users\x00', 0x0, 0x0)
preadv(r9, &(0x7f0000000940)=[{&(0x7f0000000840)=""/229, 0xe5}], 0x1, 0x80000001, 0x9) (async)
preadv(r9, &(0x7f0000000940)=[{&(0x7f0000000840)=""/229, 0xe5}], 0x1, 0x80000001, 0x9)
ioctl$RTC_PIE_OFF(r9, 0x7006)
mount$9p_fd(0x0, &(0x7f0000000280)='./cgroup\x00', &(0x7f0000000340), 0x8401, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c00000000000000013970323030302e752c00"]) (async)
mount$9p_fd(0x0, &(0x7f0000000280)='./cgroup\x00', &(0x7f0000000340), 0x8401, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c00000000000000013970323030302e752c00"])

368.957359ms ago: executing program 4 (id=2175):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d10c6a41d1000000000fff5000007000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4048010)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r5 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000840)={0xffffffffffffffff, 0xe, 0x8}, 0xc)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000340)='GPL\x00'}, 0x78)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x60840, 0x8)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000008c0)={r6, r7}, 0xc)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000ac0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
r9 = open(&(0x7f0000000b40)='./file0\x00', 0x68000, 0x20)
r10 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000000b80), 0x503003, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x18, 0x14, &(0x7f0000000880)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x9}}, @map_val={0x18, 0x3, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xb6c8}, @map_val={0x18, 0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x7}, @exit, @map_val={0x18, 0x3, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x12c000}, @map_idx={0x18, 0x4, 0x5, 0x0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}], &(0x7f0000000940)='syzkaller\x00', 0x200, 0x9d, &(0x7f0000000980)=""/157, 0x40f00, 0x40, '\x00', 0x0, 0x0, r7, 0x8, &(0x7f0000000a40)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000a80)={0x3, 0x7, 0xc00000, 0x1}, 0x10, 0x0, 0x0, 0xa, &(0x7f0000000c00)=[r8, r9, r10], &(0x7f0000000c40)=[{0x3, 0x5, 0x0, 0xb}, {0x0, 0x3, 0x0, 0xc}, {0x0, 0x1, 0x0, 0x1}, {0x3, 0x3, 0xc}, {0x4, 0x1, 0x10, 0xb}, {0x0, 0x1, 0xd, 0x9}, {0x4, 0x1, 0x9, 0x6}, {0x2, 0x5, 0x9, 0xa}, {0x0, 0x1, 0xe, 0x3}, {0x4, 0x1, 0xd, 0x4}], 0x10, 0x2}, 0x94)
close_range(r4, 0xffffffffffffffff, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000014c0)=ANY=[@ANYBLOB="50010000", @ANYRES16=r2, @ANYBLOB="010000000000fcdbdf250100000008000100000000000400048008000c8004000b800800020001000000200108801c000780080005000000000008001c001c870a5c080005000000000024000780080005000000000008000500000000000800050029c8"], 0x150}}, 0x0)
r11 = syz_open_procfs(0x0, &(0x7f0000000040)='task\x00')
getdents(r11, &(0x7f0000000080)=""/48, 0x30)
clock_gettime(0x0, &(0x7f0000005100)={<r12=>0x0, <r13=>0x0})
recvmmsg(r0, &(0x7f0000005080)=[{{&(0x7f0000000340)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f0000000480)=[{&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/48, 0x30}], 0x2, &(0x7f00000004c0)=""/102, 0x66}, 0x9}, {{0x0, 0x0, &(0x7f0000003740)=[{&(0x7f00000005c0)=""/216, 0xd8}, {&(0x7f00000006c0)=""/188, 0xbc}, {&(0x7f0000000780)=""/133, 0x85}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/68, 0x44}, {&(0x7f00000025c0)=""/35, 0x23}, {&(0x7f0000002600)=""/4096, 0x1000}, {&(0x7f0000003600)=""/19, 0x13}, {&(0x7f0000003640)=""/199, 0xc7}], 0x9, &(0x7f00000037c0)=""/148, 0x94}, 0x4ad}, {{&(0x7f0000003880)=@in={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000004f00)=[{&(0x7f0000003900)=""/255, 0xff}, {&(0x7f0000003a00)=""/254, 0xfe}, {&(0x7f0000003b00)=""/148, 0x94}, {&(0x7f0000003bc0)=""/129, 0x81}, {&(0x7f0000003c80)=""/184, 0xb8}, {&(0x7f0000003d40)=""/55, 0x37}, {&(0x7f0000003d80)=""/44, 0x2c}, {&(0x7f0000003dc0)=""/4096, 0x1000}, {&(0x7f0000004dc0)=""/205, 0xcd}, {&(0x7f0000004ec0)=""/7, 0x7}], 0xa, &(0x7f0000004f80)=""/202, 0xca}}], 0x3, 0x10001, &(0x7f0000005140)={r12, r13+60000000})
sendmsg$nl_crypto(r11, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=@get={0xf0, 0x13, 0x4, 0x70bd29, 0x25dfdbff, {{'sha3-256-generic\x00'}, '\x00', '\x00', 0x400, 0x2000}, [{0x8, 0x1, 0x6}, {0x8, 0x1, 0xf}]}, 0xf0}, 0x1, 0x0, 0x0, 0x40800}, 0x800)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newtaction={0xd8, 0x30, 0xffff, 0x0, 0x0, {}, [{0xc4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x54, 0x2, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18}, @TCA_GACT_PROB={0xc, 0x3, {0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xd8}}, 0x0)

268.301646ms ago: executing program 4 (id=2176):
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="34010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x134}, 0x1, 0x0, 0x0, 0x4014}, 0x4000000)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="100a06000908010014001a80100004800c0006"], 0x34}, 0x1, 0x0, 0x0, 0x200080d0}, 0x14)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0)
recvmmsg$unix(r3, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1}}], 0x4000000000003b9, 0x26022, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_GET(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="200027bd7000ffdbdf25070000004000018008000100", @ANYRES32=r2, @ANYBLOB="080003000200000014000200626f6e645f736c6176655f310000000008000100", @ANYRES32=r2, @ANYBLOB="080003000100000008000100", @ANYRES32=r2, @ANYBLOB="0c000180080003000000000030000180080003000200000008000300020000000800030003000000140002006970365f7674693000000000000000001400018008000100", @ANYRES32=r2, @ANYBLOB="08000300030000005c000180080003000200000008000100", @ANYRES32=r2, @ANYBLOB="08000300050000001400020070696d7265673000000000000000000008000100", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="14000200776c616e3100"/20], 0x100}, 0x1, 0x0, 0x0, 0x4008001}, 0x20000004)

130.689103ms ago: executing program 4 (id=2177):
r0 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000402505a8a4410001020b0109021b00010100c000090400000207010100090501020002"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000011c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)={0x20, 0x0, 0x1}})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
pwritev2(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)="ec", 0x1}], 0x1, 0xfffff, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="140000000400000008000000da00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000c00db8600000000e3b83960880a00dc0f0000000000000000"], 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0xa, 0x6, 0xff}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x10007f, 0x20000006, 0x4d, 0x6, 0x3, 0x9, 0x2, 0xffff2d34, 0xffffff01, 0x6, 0x3, 0xfffffffc, 0x5, 0x80000004, 0x2, 0x7, 0x3c5b, 0x80000001, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x0, 0x3, 0xe, 0x8, 0x8000806e, 0x7, 0x17, 0x1, 0x7, 0x200, 0x3e, 0x8c, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x1, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x3, 0xc8, 0xf9, 0xe, 0x7, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x1, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8020, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x43, 0x103], [0x7, 0xa, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xf, 0x4, 0x6, 0x5, 0x0, 0x6, 0x5, 0x1, 0x86, 0x6015, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x2, 0x6d03, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xc2, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0x1000000a, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0xa0a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x80000000, 0xb, 0x5, 0x93a, 0x6, 0x1000006, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x4, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0x10000, 0x7f, 0x2, 0x6, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x96, 0xffffffff, 0x80000000, 0x0, 0x4, 0xc8, 0x1, 0xfffff000, 0x10080, 0x3, 0x7e, 0x100, 0x1000, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x1, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0xfffffff8, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)

0s ago: executing program 0 (id=2178):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000052aaa802749a289c008c928789", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000002012806e0000000000f3ffffff0000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x80, &(0x7f0000000000)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c61"])
chdir(0x0)
creat(0x0, 0xc9028ba210c11f8b)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, 0x0, 0xfe33)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, 0x0, 0x0)
bind$inet6(r2, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20008044, &(0x7f00000001c0)={0xa, 0x2, 0x7, @loopback, 0xfc47}, 0x1c)
shutdown(r2, 0x1)
ioctl$BLKPG(0xffffffffffffffff, 0x1269, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="45c792135355137d27"], 0x1a)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r3, 0xf4fb)
mmap$usbmon(&(0x7f0000510000/0x3000)=nil, 0x3000, 0x300000c, 0x80010, r3, 0x2)
r4 = syz_open_dev$vim2m(&(0x7f0000000240), 0xe4eb, 0x2)
ioctl$vim2m_VIDIOC_STREAMON(r4, 0xc0d05604, &(0x7f0000000280)=0x2)
open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000002100), 0x846010, &(0x7f0000000100)=ANY=[])
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r5, 0x80083314, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x2000000, 0x28, 0x0, &(0x7f00000000c0)="63ecedae000000b986b4000115ff34c43aff1cc1363cd7059b884394d335bf9a7c0db7d3a8ebf838", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

kernel console output (not intermixed with test programs):

ent from the interface descriptor's value: 2
[  467.767714][   T29] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  467.785484][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  467.808255][   T29] usb 5-1: Product: syz
[  467.823739][   T29] usb 5-1: Manufacturer: syz
[  467.848325][   T29] usb 5-1: SerialNumber: syz
[  467.902446][T12052] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  467.920361][T12068] 9p: Bad value for 'rfdno'
[  468.111187][   T29] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 17 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  468.319583][    C0] usblp0: nonzero write bulk status received: -71
[  468.342742][T12052] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1565'.
[  468.350581][T12052] netlink: 51 bytes leftover after parsing attributes in process `syz.0.1565'.
[  468.363127][T12052] netlink: 'syz.0.1565': attribute type 4 has an invalid length.
[  468.400825][ T5841] usb 5-1: USB disconnect, device number 17
[  468.410866][ T5841] usblp0: removed
[  468.973031][T12075] openvswitch: netlink: Missing key (keys=800040, expected=2000)
[  469.127144][T12080] wg2 speed is unknown, defaulting to 1000
[  469.836742][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  469.836761][   T40] audit: type=1326 audit(1779047631.889:5176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.860903][T12109] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1578'.
[  469.866987][   T40] audit: type=1326 audit(1779047631.909:5177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.882844][T12109] bridge0: left promiscuous mode
[  469.885467][   T40] audit: type=1326 audit(1779047631.909:5178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.906551][   T40] audit: type=1326 audit(1779047631.909:5179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.929159][T12114] veth0_to_bond: entered allmulticast mode
[  469.932373][   T40] audit: type=1326 audit(1779047631.909:5180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.956386][   T40] audit: type=1326 audit(1779047631.909:5181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.971461][   T40] audit: type=1326 audit(1779047631.919:5182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.982087][   T40] audit: type=1326 audit(1779047631.919:5183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  469.993998][   T40] audit: type=1326 audit(1779047631.919:5184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  470.005111][   T40] audit: type=1326 audit(1779047631.919:5185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12104 comm="syz.0.1578" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd4fcc code=0x7ffc0000
[  470.014355][T12109] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1578'.
[  470.237245][T12124] fuse: fd is not a fuse device
[  470.237981][T12125] fuse: fd is not a fuse device
[  470.633694][T12136] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1588'.
[  471.014868][T12137] bond1: Unable to set down delay as MII monitoring is disabled
[  471.024304][T12137] bond1 (unregistering): Released all slaves
[  471.628390][T12150] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1591'.
[  471.646885][T12150] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1591'.
[  471.669150][T12150] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1591'.
[  471.753962][T12154] could not allocate digest TFM handle sha384-arm64
[  472.130842][T12167] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  472.145715][T12167] pic_ioport_write: 52 callbacks suppressed
[  472.145731][T12167] kvm: pic: level sensitive irq not supported
[  472.148533][T12167] picdev_read: 52 callbacks suppressed
[  472.148553][T12167] kvm: pic: non byte read
[  472.157859][T12167] kvm: pic: level sensitive irq not supported
[  472.158152][T12167] kvm: pic: non byte read
[  472.163627][T12167] kvm: pic: level sensitive irq not supported
[  472.163955][T12167] kvm: pic: non byte read
[  472.170768][T12167] kvm: pic: level sensitive irq not supported
[  472.171140][T12167] kvm: pic: non byte read
[  472.177399][T12167] kvm: pic: level sensitive irq not supported
[  472.177748][T12167] kvm: pic: non byte read
[  472.183112][T12167] kvm: pic: level sensitive irq not supported
[  472.183444][T12167] kvm: pic: non byte read
[  472.189268][T12167] kvm: pic: level sensitive irq not supported
[  472.189680][T12167] kvm: pic: non byte read
[  472.195972][T12167] kvm: pic: level sensitive irq not supported
[  472.196332][T12167] kvm: pic: non byte read
[  472.206504][T12167] kvm: pic: level sensitive irq not supported
[  472.207819][T12167] kvm: pic: non byte read
[  472.214188][T12167] kvm: pic: level sensitive irq not supported
[  472.214566][T12167] kvm: pic: non byte read
[  473.045233][T12185] bridge0: port 4(erspan0) entered blocking state
[  473.071658][T12185] bridge0: port 4(erspan0) entered disabled state
[  473.081874][T12185] erspan0: entered allmulticast mode
[  473.181618][T12185] erspan0: entered promiscuous mode
[  473.186605][T12185] bridge0: port 4(erspan0) entered blocking state
[  473.189945][T12185] bridge0: port 4(erspan0) entered forwarding state
[  473.306563][T12193] binder: 12192:12193 ioctl c0306201 80000080 returned -14
[  473.328541][T12193] binder: 12192:12193 ioctl c0306201 800003c0 returned -14
[  473.356049][T12193] binder_alloc: 12192: binder_alloc_buf, no vma
[  473.783337][T12204] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  475.441695][   T29] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  475.649010][   T29] usb 7-1: device descriptor read/64, error -71
[  475.921491][   T29] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  475.972451][T12242] random: crng reseeded on system resumption
[  476.007685][T12244] overlayfs: failed to clone upperpath
[  476.009052][ T5911] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  476.119106][   T29] usb 7-1: device descriptor read/64, error -71
[  476.178877][ T5911] usb 9-1: Using ep0 maxpacket: 8
[  476.184550][ T5911] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  476.188545][ T5911] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  476.193602][ T5911] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  476.197762][ T5911] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  476.202367][ T5911] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  476.207744][ T5911] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  476.211130][ T5911] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.231101][   T29] usb usb7-port1: attempt power cycle
[  476.421221][ T5911] usb 9-1: usb_control_msg returned -32
[  476.423573][ T5911] usbtmc 9-1:16.0: can't read capabilities
[  476.591703][   T29] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  476.613448][   T29] usb 7-1: device descriptor read/8, error -71
[  476.759202][T12250] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1623'.
[  476.764320][T12250] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1623'.
[  476.858586][   T40] kauditd_printk_skb: 51 callbacks suppressed
[  476.858605][   T40] audit: type=1326 audit(1779047638.909:5237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.1.1625" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x0
[  476.888937][   T29] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  476.929480][   T29] usb 7-1: device descriptor read/8, error -71
[  477.039352][   T29] usb usb7-port1: unable to enumerate USB device
[  477.058181][T12259] xt_connbytes: Forcing CT accounting to be enabled
[  477.062284][T12259] xt_TPROXY: Can be used only with -p tcp or -p udp
[  477.080539][   T29] libceph: connect (1)[c::]:6789 error -101
[  477.084458][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  477.096188][   T29] libceph: connect (1)[c::]:6789 error -101
[  477.100617][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  477.128070][T12259] ceph: No mds server is up or the cluster is laggy
[  478.163828][T12274] vlan0: entered promiscuous mode
[  478.166473][T12274] bridge0: entered promiscuous mode
[  479.919134][ T5911] usb 5-1: new low-speed USB device number 18 using dummy_hcd
[  480.055681][T12310] batadv_slave_1: entered promiscuous mode
[  480.061065][ T5911] usb 5-1: device descriptor read/64, error -71
[  480.066756][T12310] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1642'.
[  480.086142][T12310] batadv_slave_1 (unregistering): left promiscuous mode
[  480.122249][T12311] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1640'.
[  480.318948][ T5911] usb 5-1: new low-speed USB device number 19 using dummy_hcd
[  480.449369][ T5911] usb 5-1: device descriptor read/64, error -71
[  480.533253][   T40] audit: type=1326 audit(1779047642.589:5238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.545676][   T40] audit: type=1326 audit(1779047642.589:5239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.549158][T12324] overlayfs: failed to clone lowerpath
[  480.559434][   T40] audit: type=1326 audit(1779047642.599:5240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.565973][ T5911] usb usb5-port1: attempt power cycle
[  480.581017][   T40] audit: type=1326 audit(1779047642.599:5241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.604980][   T40] audit: type=1326 audit(1779047642.599:5242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.621336][   T40] audit: type=1326 audit(1779047642.599:5243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.630370][   T40] audit: type=1326 audit(1779047642.599:5245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.638266][   T40] audit: type=1326 audit(1779047642.599:5244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.645273][   T40] audit: type=1326 audit(1779047642.599:5247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12318 comm="syz.1.1646" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  480.948967][ T5911] usb 5-1: new low-speed USB device number 20 using dummy_hcd
[  480.970065][ T5911] usb 5-1: device descriptor read/8, error -71
[  481.209107][ T5911] usb 5-1: new low-speed USB device number 21 using dummy_hcd
[  481.243043][ T5911] usb 5-1: device descriptor read/8, error -71
[  481.359599][ T5911] usb usb5-port1: unable to enumerate USB device
[  481.816540][T12253] usbtmc 9-1:16.0: usb_control_msg returned -110
[  481.834940][ T5911] usb 9-1: USB disconnect, device number 3
[  481.917569][T12334] wg2 speed is unknown, defaulting to 1000
[  482.741635][T12352] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  482.745073][T12352] IPv6: NLM_F_CREATE should be set when creating new route
[  482.745213][T12350] wg2 speed is unknown, defaulting to 1000
[  482.751438][T12352] IPv6: NLM_F_CREATE should be set when creating new route
[  482.754852][T12352] IPv6: NLM_F_CREATE should be set when creating new route
[  482.789188][T12348] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  482.956680][T12359] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1657'.
[  483.076047][T12362] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1653'.
[  483.087299][T12362] openvswitch: netlink: Flow actions attr not present in new flow.
[  483.957484][T12375] bond0: entered allmulticast mode
[  483.961001][T12375] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.737336][T12405] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  484.965022][T12420] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1672'.
[  485.223202][T12421] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1672'.
[  485.241612][T12421] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  485.244473][T12421] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  485.250113][T12421] vhci_hcd vhci_hcd.0: Device attached
[  485.280778][T12421] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  485.348194][T12426] ceph: No mds server is up or the cluster is laggy
[  485.539246][   T54] usb 46-1: SetAddress Request (2) to port 0
[  485.542083][   T54] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  485.705933][T12448] can: request_module (can-proto-3) failed.
[  485.792464][T12423] vhci_hcd: connection reset by peer
[  485.797134][   T59] vhci_hcd vhci_hcd.4: stop threads
[  485.804056][   T59] vhci_hcd vhci_hcd.4: release socket
[  485.810124][   T59] vhci_hcd vhci_hcd.4: disconnect device
[  485.890685][T12458] random: crng reseeded on system resumption
[  485.927537][T12459] 8021q: VLANs not supported on lo
[  485.953844][T12458] netlink: 'syz.2.1680': attribute type 19 has an invalid length.
[  485.957670][T12458] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1680'.
[  486.177180][T12463] 9p: Bad value for 'rfdno'
[  486.194889][T12463] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  486.968892][T12474] wg2 speed is unknown, defaulting to 1000
[  487.017347][T12478] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1686'.
[  487.830570][T12481] bond1: Unable to set down delay as MII monitoring is disabled
[  487.923959][T12481] bond1 (unregistering): Released all slaves
[  487.930239][T12490] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1688'.
[  488.054029][T12484] wg2 speed is unknown, defaulting to 1000
[  488.436694][T12493] wg2 speed is unknown, defaulting to 1000
[  488.481902][ T5905] IPVS: starting estimator thread 0...
[  488.599210][T12500] IPVS: using max 34 ests per chain, 81600 per kthread
[  488.605328][T12497] netlink: 'syz.4.1690': attribute type 1 has an invalid length.
[  488.609818][T12497] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1690'.
[  488.613821][T12497] netlink: 1 bytes leftover after parsing attributes in process `syz.4.1690'.
[  488.617865][T12497] netlink: 658 bytes leftover after parsing attributes in process `syz.4.1690'.
[  489.902374][T12532] tmpfs: Bad value for 'mpol'
[  490.164683][T12547] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1700'.
[  490.172879][T12547] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1700'.
[  490.177898][T12547] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1700'.
[  490.509093][ T5755] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  490.609220][   T54] usb 46-1: device descriptor read/8, error -110
[  490.658916][ T5755] usb 9-1: Using ep0 maxpacket: 8
[  490.663346][ T5755] usb 9-1: config index 0 descriptor too short (expected 74, got 45)
[  490.673597][ T5755] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  490.686220][ T5755] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  490.695947][ T5755] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  490.719044][ T5755] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  490.723955][ T5755] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  490.740375][ T5755] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  490.744989][ T5755] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  490.770963][T12559] netlink: 'syz.1.1704': attribute type 1 has an invalid length.
[  490.796004][T12559] 8021q: adding VLAN 0 to HW filter on device bond5
[  490.831553][T12559] 8021q: adding VLAN 0 to HW filter on device bond5
[  490.836107][T12559] bond5: (slave vxcan5): The slave device specified does not support setting the MAC address
[  490.843059][T12559] bond5: (slave vxcan5): Error -95 calling set_mac_address
[  490.891186][T12562] macvlan2: entered promiscuous mode
[  490.894497][T12562] macvlan2: entered allmulticast mode
[  490.915517][T12562] bond5: entered promiscuous mode
[  490.927487][T12562] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  490.942441][T12562] bond5: left promiscuous mode
[  490.970705][ T5755] usb 9-1: usb_control_msg returned -32
[  490.974959][ T5755] usbtmc 9-1:16.0: can't read capabilities
[  491.013352][   T54] usb usb46-port1: attempt power cycle
[  491.140128][T12569] netlink: 'syz.1.1706': attribute type 1 has an invalid length.
[  491.244495][T12569] workqueue: Failed to create a rescuer kthread for wq "bond6": -EINTR
[  491.405400][T12552] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.416886][T12583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1708'.
[  491.436794][T12584] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1707'.
[  491.447331][T12584] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1707'.
[  491.505149][T12578] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1701'.
[  491.512688][T12581] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  491.579443][T12583] 8021q: adding VLAN 0 to HW filter on device bond6
[  491.610105][   T54] usb usb46-port1: unable to enumerate USB device
[  491.692948][T12552] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.747141][T12586] 9p: Could not find request transport: vir4io
[  491.885482][T12552] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.261675][T12552] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.441396][ T3557] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  492.475548][ T3557] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  492.497918][ T3557] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  492.514800][ T3557] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  492.563600][ T5905] usb 9-1: USB disconnect, device number 4
[  493.327341][T12607] sch_tbf: burst 185 is lower than device syzkaller0 mtu (1500) !
[  493.498989][ T5905] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  493.608352][T12610] overlayfs: missing 'workdir'
[  493.652171][ T5905] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  493.656776][ T5905] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  493.661232][ T5905] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  493.665396][ T5905] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  493.671430][ T5905] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  493.675374][T12610] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  493.677833][ T5905] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  493.685790][ T5905] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  493.689540][ T5905] usb 9-1: Product: syz
[  493.691365][ T5905] usb 9-1: Manufacturer: syz
[  493.731039][ T5905] cdc_wdm 9-1:1.0: skipping garbage
[  493.733738][ T5905] cdc_wdm 9-1:1.0: skipping garbage
[  493.742648][ T5905] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  493.745767][ T5905] cdc_wdm 9-1:1.0: Unknown control protocol
[  494.148076][T12595] Process accounting resumed
[  494.255441][T12615] __nla_validate_parse: 3 callbacks suppressed
[  494.255465][T12615] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1716'.
[  494.559451][T12629] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1719'.
[  494.567980][T12629] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1719'.
[  494.575570][T12629] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1719'.
[  496.534850][ T5826] usb 9-1: USB disconnect, device number 5
[  497.104533][T12649] netlink: 'syz.4.1723': attribute type 1 has an invalid length.
[  497.140966][T12649] 8021q: adding VLAN 0 to HW filter on device bond1
[  497.602127][T12659] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1727'.
[  497.680458][T12672] program syz.2.1729 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  498.969680][T12689] fuse: fd is not a fuse device
[  499.518021][T12700] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1737'.
[  499.876291][T12707] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  499.878782][T12707] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  499.902000][T12707] vhci_hcd vhci_hcd.0: Device attached
[  499.986404][T12712] netlink: 'syz.0.1738': attribute type 1 has an invalid length.
[  500.040113][T12712] bond2: entered promiscuous mode
[  500.043891][T12712] 8021q: adding VLAN 0 to HW filter on device bond2
[  500.100737][T12712] 8021q: adding VLAN 0 to HW filter on device bond2
[  500.101104][T12712] bond2: (slave vcan1): The slave device specified does not support setting the MAC address
[  500.101125][T12712] bond2: (slave vcan1): Setting fail_over_mac to active for active-backup mode
[  500.108022][T12712] bond2: (slave vcan1): making interface the new active one
[  500.108064][T12712] vcan1: entered promiscuous mode
[  500.112265][T12712] bond2: (slave vcan1): Enslaving as an active interface with an up link
[  500.168924][   T29] usb 42-1: SetAddress Request (14) to port 0
[  500.168970][   T29] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[  500.186298][T12716] netlink: 16146 bytes leftover after parsing attributes in process `syz.0.1739'.
[  500.579268][T12708] vhci_hcd: connection reset by peer
[  500.584888][   T46] vhci_hcd vhci_hcd.2: stop threads
[  500.587432][   T46] vhci_hcd vhci_hcd.2: release socket
[  500.594304][   T46] vhci_hcd vhci_hcd.2: disconnect device
[  501.100502][T12727] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1742'.
[  501.105348][T12727] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1742'.
[  501.109438][T12727] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1742'.
[  501.263518][T12734] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  501.313306][T12734] picdev_read: 52 callbacks suppressed
[  501.313324][T12734] kvm: pic: non byte read
[  501.321718][T12734] pic_ioport_write: 52 callbacks suppressed
[  501.321733][T12734] kvm: pic: level sensitive irq not supported
[  501.324657][T12734] kvm: pic: non byte read
[  501.333163][T12734] kvm: pic: level sensitive irq not supported
[  501.334145][T12734] kvm: pic: non byte read
[  501.343552][T12734] kvm: pic: level sensitive irq not supported
[  501.344785][T12734] kvm: pic: non byte read
[  501.353489][T12734] kvm: pic: level sensitive irq not supported
[  501.354300][T12734] kvm: pic: non byte read
[  501.364079][T12734] kvm: pic: level sensitive irq not supported
[  501.364551][T12734] kvm: pic: non byte read
[  501.375373][T12734] kvm: pic: level sensitive irq not supported
[  501.375938][T12734] kvm: pic: non byte read
[  501.407296][T12734] kvm: pic: level sensitive irq not supported
[  501.409053][T12734] kvm: pic: non byte read
[  501.417509][T12734] kvm: pic: level sensitive irq not supported
[  501.418331][T12734] kvm: pic: non byte read
[  501.425902][T12734] kvm: pic: level sensitive irq not supported
[  501.427140][T12734] kvm: pic: non byte read
[  501.435351][T12734] kvm: pic: level sensitive irq not supported
[  501.628117][T12748] wg2 speed is unknown, defaulting to 1000
[  501.739387][T12762] loop4: detected capacity change from 0 to 7
[  501.751556][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.755520][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.774038][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.778360][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.795722][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.799222][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.803164][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.806683][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.810198][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.814210][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.818348][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.822041][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.825449][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.829938][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.833279][T12762] ldm_validate_partition_table(): Disk read failed.
[  501.835932][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.840053][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.848382][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.852770][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.857125][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  501.860914][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[  501.864415][T12762] Dev loop4: unable to read RDB block 0
[  501.868014][T12762]  loop4: unable to read partition table
[  501.871912][T12762] loop4: partition table beyond EOD, truncated
[  501.874785][T12762] loop_reread_partitions: partition scan of loop4 (���������C�j̖�P=ý?�}X���	���%�֐�ȵ4FLQk݊5) failed (rc=-5)
[  503.130123][T12782] syzkaller0: entered promiscuous mode
[  503.135195][T12782] syzkaller0: entered allmulticast mode
[  503.185074][T12782] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1757'.
[  505.240415][   T29] usb 42-1: device descriptor read/8, error -110
[  505.598583][T12796] ptrace attach of ""[12800] was attempted by "/syz-executor exec"[12796]
[  505.664382][T12804] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1764'.
[  505.671952][T12804] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1764'.
[  505.712580][   T29] usb usb42-port1: attempt power cycle
[  505.713501][T12804] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1764'.
[  506.227899][T12824] bridge0: port 2(bridge_slave_1) entered disabled state
[  506.309086][T11165] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  506.450777][   T29] usb usb42-port1: unable to enumerate USB device
[  506.598951][T11165] usb 7-1: Using ep0 maxpacket: 8
[  507.067269][ T1434] ieee802154 phy0 wpan0: encryption failed: -22
[  507.385982][T11165] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  507.408452][T11165] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  507.445908][T11165] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  507.471843][T11165] usb 7-1: config 0 descriptor??
[  507.849525][T11165] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  508.291128][ T5854] usb 7-1: USB disconnect, device number 21
[  509.282389][T12859] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  509.465845][T12869] 9pnet_virtio: no channels available for device syz
[  509.509499][T12869] wg2 speed is unknown, defaulting to 1000
[  509.948330][T12879] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1784'.
[  511.470955][T12916] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1793'.
[  511.608482][T12913] wg2 speed is unknown, defaulting to 1000
[  515.299132][T12951] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  515.310964][T12951] FAULT_INJECTION: forcing a failure.
[  515.310964][T12951] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  515.320799][T12951] CPU: 3 UID: 0 PID: 12951 Comm: syz.4.1801 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  515.320838][T12951] Tainted: [L]=SOFTLOCKUP
[  515.320845][T12951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  515.320879][T12951] Call Trace:
[  515.320889][T12951]  <TASK>
[  515.320898][T12951]  dump_stack_lvl+0x100/0x190
[  515.320953][T12951]  should_fail_ex.cold+0x5/0xa
[  515.320976][T12951]  ? prepare_alloc_pages+0x16d/0x5f0
[  515.321005][T12951]  should_fail_alloc_page+0xeb/0x140
[  515.321041][T12951]  prepare_alloc_pages+0x1f0/0x5f0
[  515.321074][T12951]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  515.321115][T12951]  ? rcu_is_watching+0x12/0xc0
[  515.321142][T12951]  ? trace_mm_page_alloc+0x163/0x1d0
[  515.321170][T12951]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  515.321205][T12951]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  515.321242][T12951]  ? __pfx_stack_trace_save+0x10/0x10
[  515.321273][T12951]  ? stack_depot_save_flags+0x27/0x9d0
[  515.321311][T12951]  ? is_bpf_text_address+0x8a/0x1a0
[  515.321342][T12951]  ? is_bpf_text_address+0x8a/0x1a0
[  515.321373][T12951]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  515.321406][T12951]  ? kasan_save_stack+0x3f/0x50
[  515.321427][T12951]  ? kasan_save_stack+0x30/0x50
[  515.321446][T12951]  ? kasan_save_track+0x14/0x30
[  515.321468][T12951]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  515.321503][T12951]  ? __get_vm_area_node+0x1ca/0x330
[  515.321528][T12951]  ? __vmalloc_node_range_noprof+0x228/0x1630
[  515.321556][T12951]  ? __vmalloc_node_noprof+0xad/0xf0
[  515.321582][T12951]  ? copy_process+0x7fb/0x7ed0
[  515.321611][T12951]  ? vhost_task_create+0x1db/0x370
[  515.321632][T12951]  ? kvm_mmu_post_init_vm+0x1b3/0x370
[  515.321660][T12951]  ? kvm_arch_vcpu_ioctl_run+0x66/0x1890
[  515.321687][T12951]  ? kvm_vcpu_ioctl+0x730/0x1720
[  515.321737][T12951]  ? kvm_vcpu_compat_ioctl+0x20f/0x3c0
[  515.321767][T12951]  alloc_pages_bulk_noprof+0x657/0x1390
[  515.321798][T12951]  ? policy_nodemask+0xed/0x4f0
[  515.321827][T12951]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  515.321869][T12951]  __kasan_populate_vmalloc+0xf0/0x210
[  515.321910][T12951]  alloc_vmap_area+0x95d/0x2b70
[  515.321949][T12951]  ? __pfx_alloc_vmap_area+0x10/0x10
[  515.321984][T12951]  __get_vm_area_node+0x1ca/0x330
[  515.322016][T12951]  __vmalloc_node_range_noprof+0x228/0x1630
[  515.322050][T12951]  ? vhost_task_create+0x1db/0x370
[  515.322071][T12951]  ? rcu_is_watching+0x12/0xc0
[  515.322102][T12951]  ? vhost_task_create+0x1db/0x370
[  515.322129][T12951]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  515.322162][T12951]  ? rcu_is_watching+0x12/0xc0
[  515.322185][T12951]  ? trace_kmem_cache_alloc+0xd5/0x100
[  515.322211][T12951]  ? vhost_task_create+0x1db/0x370
[  515.322230][T12951]  __vmalloc_node_noprof+0xad/0xf0
[  515.322256][T12951]  ? vhost_task_create+0x1db/0x370
[  515.322279][T12951]  copy_process+0x7fb/0x7ed0
[  515.322322][T12951]  ? __pfx_copy_process+0x10/0x10
[  515.322352][T12951]  ? lockdep_init_map_type+0x5c/0x250
[  515.322373][T12951]  ? lockdep_init_map_type+0x5c/0x250
[  515.322428][T12951]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  515.322459][T12951]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  515.322487][T12951]  vhost_task_create+0x1db/0x370
[  515.322508][T12951]  ? __pfx_vhost_task_create+0x10/0x10
[  515.322526][T12951]  ? register_lock_class+0x40/0x560
[  515.322583][T12951]  ? __pfx_vhost_task_fn+0x10/0x10
[  515.322606][T12951]  ? __pfx___mutex_lock+0x10/0x10
[  515.322648][T12951]  kvm_mmu_post_init_vm+0x1b3/0x370
[  515.322675][T12951]  kvm_arch_vcpu_ioctl_run+0x66/0x1890
[  515.322708][T12951]  ? kvm_vcpu_ioctl+0x1546/0x1720
[  515.322733][T12951]  kvm_vcpu_ioctl+0x730/0x1720
[  515.322755][T12951]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  515.322774][T12951]  ? tomoyo_path_number_perm+0x188/0x580
[  515.322797][T12951]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  515.322818][T12951]  ? get_pid_task+0x106/0x250
[  515.322853][T12951]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  515.322883][T12951]  ? do_vfs_ioctl+0x226/0x13e0
[  515.322904][T12951]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  515.322937][T12951]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[  515.322956][T12951]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  515.322975][T12951]  ? __fget_files+0x21f/0x3d0
[  515.323001][T12951]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  515.323021][T12951]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  515.323052][T12951]  __do_fast_syscall_32+0xe7/0x950
[  515.323070][T12951]  ? lockdep_hardirqs_on+0x78/0x100
[  515.323098][T12951]  do_fast_syscall_32+0x32/0x70
[  515.323117][T12951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  515.323142][T12951] RIP: 0023:0xf7f65fcc
[  515.323159][T12951] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  515.323178][T12951] RSP: 002b:00000000f542650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  515.323198][T12951] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae80
[  515.323209][T12951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  515.323220][T12951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  515.323230][T12951] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  515.323241][T12951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  515.323268][T12951]  </TASK>
[  515.323991][T12951] syz.4.1801: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  515.571279][T12951] CPU: 3 UID: 0 PID: 12951 Comm: syz.4.1801 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  515.571312][T12951] Tainted: [L]=SOFTLOCKUP
[  515.571319][T12951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  515.571331][T12951] Call Trace:
[  515.571338][T12951]  <TASK>
[  515.571347][T12951]  dump_stack_lvl+0x100/0x190
[  515.571375][T12951]  warn_alloc.cold+0x95/0x1c1
[  515.571397][T12951]  ? __pfx_warn_alloc+0x10/0x10
[  515.571424][T12951]  ? lockdep_hardirqs_on+0x78/0x100
[  515.571455][T12951]  ? __get_vm_area_node+0x2c5/0x330
[  515.571484][T12951]  ? __get_vm_area_node+0x208/0x330
[  515.571512][T12951]  __vmalloc_node_range_noprof+0xccd/0x1630
[  515.571540][T12951]  ? rcu_is_watching+0x12/0xc0
[  515.571568][T12951]  ? vhost_task_create+0x1db/0x370
[  515.571598][T12951]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  515.571632][T12951]  ? rcu_is_watching+0x12/0xc0
[  515.571654][T12951]  ? trace_kmem_cache_alloc+0xd5/0x100
[  515.571680][T12951]  ? vhost_task_create+0x1db/0x370
[  515.571699][T12951]  __vmalloc_node_noprof+0xad/0xf0
[  515.571725][T12951]  ? vhost_task_create+0x1db/0x370
[  515.571749][T12951]  copy_process+0x7fb/0x7ed0
[  515.571794][T12951]  ? __pfx_copy_process+0x10/0x10
[  515.571825][T12951]  ? lockdep_init_map_type+0x5c/0x250
[  515.571847][T12951]  ? lockdep_init_map_type+0x5c/0x250
[  515.571868][T12951]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  515.571929][T12951]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  515.571960][T12951]  vhost_task_create+0x1db/0x370
[  515.571987][T12951]  ? __pfx_vhost_task_create+0x10/0x10
[  515.572006][T12951]  ? register_lock_class+0x40/0x560
[  515.572032][T12951]  ? __pfx_vhost_task_fn+0x10/0x10
[  515.572056][T12951]  ? __pfx___mutex_lock+0x10/0x10
[  515.572087][T12951]  kvm_mmu_post_init_vm+0x1b3/0x370
[  515.572112][T12951]  kvm_arch_vcpu_ioctl_run+0x66/0x1890
[  515.572136][T12951]  ? kvm_vcpu_ioctl+0x1546/0x1720
[  515.572162][T12951]  kvm_vcpu_ioctl+0x730/0x1720
[  515.572183][T12951]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  515.572202][T12951]  ? tomoyo_path_number_perm+0x188/0x580
[  515.572225][T12951]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  515.572247][T12951]  ? get_pid_task+0x106/0x250
[  515.572282][T12951]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  515.572312][T12951]  ? do_vfs_ioctl+0x226/0x13e0
[  515.572333][T12951]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  515.572366][T12951]  kvm_vcpu_compat_ioctl+0x20f/0x3c0
[  515.572387][T12951]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  515.572407][T12951]  ? __fget_files+0x21f/0x3d0
[  515.572436][T12951]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  515.572456][T12951]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  515.572479][T12951]  __do_fast_syscall_32+0xe7/0x950
[  515.572497][T12951]  ? lockdep_hardirqs_on+0x78/0x100
[  515.572528][T12951]  do_fast_syscall_32+0x32/0x70
[  515.572547][T12951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  515.572572][T12951] RIP: 0023:0xf7f65fcc
[  515.572592][T12951] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  515.572610][T12951] RSP: 002b:00000000f542650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  515.572630][T12951] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae80
[  515.572642][T12951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  515.572653][T12951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  515.572664][T12951] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  515.572676][T12951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  515.572703][T12951]  </TASK>
[  515.572711][T12951] Mem-Info:
[  515.752645][T12951] active_anon:10350 inactive_anon:2275 isolated_anon:0
[  515.752645][T12951]  active_file:3303 inactive_file:16319 isolated_file:0
[  515.752645][T12951]  unevictable:1749 dirty:296 writeback:0
[  515.752645][T12951]  slab_reclaimable:6151 slab_unreclaimable:58162
[  515.752645][T12951]  mapped:31191 shmem:9027 pagetables:1383
[  515.752645][T12951]  sec_pagetables:307 bounce:0
[  515.752645][T12951]  kernel_misc_reclaimable:0
[  515.752645][T12951]  free:54611 free_pcp:11674 free_cma:0
[  515.770612][T12951] Node 0 active_anon:656kB inactive_anon:84kB active_file:4kB inactive_file:0kB unevictable:3460kB isolated(anon):0kB isolated(file):0kB mapped:24kB dirty:4kB writeback:0kB shmem:3992kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8320kB pagetables:1936kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  515.785510][T12951] Node 1 active_anon:41044kB inactive_anon:9016kB active_file:13208kB inactive_file:65276kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:125040kB dirty:1180kB writeback:0kB shmem:32316kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5208kB pagetables:3596kB sec_pagetables:88kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  515.803970][T12951] Node 0 DMA free:2072kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:320kB local_pcp:184kB free_cma:0kB
[  515.823194][T12951] lowmem_reserve[]: 0 285 285 285 285
[  515.826947][T12951] Node 0 DMA32 free:15996kB boost:0kB min:13088kB low:16360kB high:19632kB reserved_highatomic:0KB free_highatomic:0KB active_anon:656kB inactive_anon:84kB active_file:4kB inactive_file:0kB unevictable:3460kB writepending:4kB zspages:324kB present:1032196kB managed:292524kB mlocked:0kB bounce:0kB free_pcp:8412kB local_pcp:3848kB free_cma:0kB
[  515.849179][T12951] lowmem_reserve[]: 0 0 0 0 0
[  515.852793][T12951] Node 1 DMA32 free:198476kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:35544kB inactive_anon:9016kB active_file:13208kB inactive_file:65276kB unevictable:3536kB writepending:1180kB zspages:4040kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:45188kB local_pcp:6112kB free_cma:0kB
[  515.869670][T12951] lowmem_reserve[]: 0 0 0 0 0
[  515.872322][T12951] Node 0 DMA: 26*4kB (UM) 16*8kB (UM) 7*16kB (UM) 4*32kB (U) 1*64kB (M) 0*128kB 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2072kB
[  515.878933][T12951] Node 0 DMA32: 5*4kB (UME) 293*8kB (UME) 138*16kB (UME) 93*32kB (UE) 38*64kB (UME) 17*128kB (UME) 7*256kB (UME) 4*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 15996kB
[  515.887712][T12951] Node 1 DMA32: 3246*4kB (UME) 2389*8kB (UME) 1591*16kB (UME) 416*32kB (UME) 179*64kB (UME) 159*128kB (UME) 98*256kB (UME) 64*512kB (UM) 25*1024kB (UM) 12*2048kB (UM) 0*4096kB = 210704kB
[  515.895966][T12951] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  515.900457][T12951] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  515.905783][T12951] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  515.910133][T12951] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  515.914345][T12951] 26998 total pagecache pages
[  515.916520][T12951] 672 pages in swap cache
[  515.919024][T12951] Free swap  = 105596kB
[  515.920990][T12951] Total swap = 124996kB
[  515.922905][T12951] 524155 pages RAM
[  515.924846][T12951] 0 pages HighMem/MovableOnly
[  515.927064][T12951] 210131 pages reserved
[  515.929075][T12951] 0 pages cma reserved
[  516.116714][T12964] /dev/nullb0: Can't open blockdev
[  516.572034][T12968] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1804'.
[  516.977331][T12981] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.072830][T12981] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.110720][T12982] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1808'.
[  517.169391][T12981] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.257495][T12981] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.522641][ T3557] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  517.541619][ T3557] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  517.572621][ T3557] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  517.575790][ T3557] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  517.654847][T12990] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  518.113722][T12997] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  518.128371][T12997] trusted_key: encrypted_key: hex blob is missing
[  519.046425][T13001] fuse: fd is not a fuse device
[  519.784807][T13005] Bluetooth: MGMT ver 1.23
[  519.943613][T13008] comedi: valid board names for 8255 driver are:
[  519.946978][T13008]  8255
[  519.948361][T13008] comedi: valid board names for vmk80xx driver are:
[  519.955423][T13008]  vmk80xx
[  519.957611][T13008] comedi: valid board names for usbduxsigma driver are:
[  519.962183][T13008]  usbduxsigma
[  519.963870][T13008] comedi: valid board names for usbduxfast driver are:
[  519.967581][T13008]  usbduxfast
[  519.972575][T13008] comedi: valid board names for usbdux driver are:
[  519.981174][T13008]  usbdux
[  519.982768][T13008] comedi: valid board names for ni6501 driver are:
[  519.987937][T13008]  ni6501
[  519.991750][T13008] comedi: valid board names for dt9812 driver are:
[  519.998417][T13008]  dt9812
[  519.999876][T13008] comedi: valid board names for ni_labpc_cs driver are:
[  520.005314][T13008]  ni_labpc_cs
[  520.007153][T13008] comedi: valid board names for ni_daq_700 driver are:
[  520.015778][T13008]  ni_daq_700
[  520.019800][T13008] comedi: valid board names for labpc_pci driver are:
[  520.027656][T13008]  labpc_pci
[  520.029165][T13008] comedi: valid board names for adl_pci9118 driver are:
[  520.032215][T13008]  pci9118dg
[  520.033682][T13008]  pci9118hg
[  520.038715][T13008]  pci9118hr
[  520.039146][  T857] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  520.040489][T13008] comedi: valid board names for 8255_pci driver are:
[  520.040539][T13008]  8255_pci
[  520.049583][T13008] comedi: valid board names for s526 driver are:
[  520.052102][T13008]  s526
[  520.053834][T13008] comedi: valid board names for multiq3 driver are:
[  520.056126][T13008]  multiq3
[  520.057956][T13008] comedi: valid board names for pcmuio driver are:
[  520.061739][T13008]  pcmuio48
[  520.063382][T13008]  pcmuio96
[  520.065560][T13008] comedi: valid board names for pcmmio driver are:
[  520.068734][T13008]  pcmmio
[  520.072728][T13008] comedi: valid board names for pcmda12 driver are:
[  520.080791][T13008]  pcmda12
[  520.082587][T13008] comedi: valid board names for pcmad driver are:
[  520.085369][T13008]  pcmad12
[  520.086632][T13008]  pcmad16
[  520.087988][T13008] comedi: valid board names for ni_labpc driver are:
[  520.091495][T13008]  lab-pc-1200
[  520.093338][T13008]  lab-pc-1200ai
[  520.095663][T13008]  lab-pc+
[  520.097612][T13008] comedi: valid board names for atmio16 driver are:
[  520.101464][T13008]  atmio16
[  520.102842][T13008]  atmio16d
[  520.104475][T13008] comedi: valid board names for ni_at_ao driver are:
[  520.108385][T13008]  at-ao-6
[  520.111133][T13008]  at-ao-10
[  520.112841][T13008] comedi: valid board names for ni_at_a2150 driver are:
[  520.116259][T13008]  ni_at_a2150
[  520.117716][T13008] comedi: valid board names for adq12b driver are:
[  520.120951][T13008]  adq12b
[  520.122273][T13008] comedi: valid board names for mpc624 driver are:
[  520.125813][T13008]  mpc624
[  520.127889][T13008] comedi: valid board names for c6xdigio driver are:
[  520.132332][T13008]  c6xdigio
[  520.134097][T13008] comedi: valid board names for aio_iiro_16 driver are:
[  520.137407][T13008]  aio_iiro_16
[  520.139885][T13008] comedi: valid board names for aio_aio12_8 driver are:
[  520.143356][T13008]  aio_aio12_8
[  520.145087][T13008]  aio_ai12_8
[  520.146608][T13008]  aio_ao12_4
[  520.148358][T13008] comedi: valid board names for fl512 driver are:
[  520.152098][T13008]  fl512
[  520.153419][T13008] comedi: valid board names for dmm32at driver are:
[  520.157242][T13008]  dmm32at
[  520.159097][T13008] comedi: valid board names for dt282x driver are:
[  520.162238][T13008]  dt2821
[  520.163603][T13008]  dt2821-f
[  520.165217][T13008]  dt2821-g
[  520.166794][T13008]  dt2823
[  520.168158][T13008]  dt2824-pgh
[  520.170190][T13008]  dt2824-pgl
[  520.171682][T13008]  dt2825
[  520.173110][T13008]  dt2827
[  520.174299][T13008]  dt2828
[  520.175737][T13008]  dt2829
[  520.177217][T13008]  dt21-ez
[  520.178854][T13008]  dt23-ez
[  520.180523][T13008]  dt24-ez
[  520.182169][T13008]  dt24-ez-pgl
[  520.184054][T13008] comedi: valid board names for dt2817 driver are:
[  520.186943][T13008]  dt2817
[  520.188322][T13008] comedi: valid board names for dt2815 driver are:
[  520.191633][T13008]  dt2815
[  520.193127][T13008] comedi: valid board names for dt2814 driver are:
[  520.196658][T13008]  dt2814
[  520.198033][T13008] comedi: valid board names for dt2811 driver are:
[  520.201013][T13008]  dt2811-pgh
[  520.202362][T13008]  dt2811-pgl
[  520.204311][T13008] comedi: valid board names for dt2801 driver are:
[  520.207541][T13008]  dt2801
[  520.209375][T13008] comedi: valid board names for das6402 driver are:
[  520.220161][T13008]  das6402-12
[  520.221809][T13008]  das6402-16
[  520.227868][T13008] comedi: valid board names for das1800 driver are:
[  520.231583][  T857] usb 5-1: Using ep0 maxpacket: 8
[  520.238126][T13008]  das-1701st
[  520.240081][T13008]  das-1701st-da
[  520.242696][T13008]  das-1702st
[  520.244226][T13008]  das-1702st-da
[  520.245870][T13008]  das-1702hr
[  520.247353][T13008]  das-1702hr-da
[  520.249606][T13008]  das-1701ao
[  520.250745][T13008]  das-1702ao
[  520.254120][  T857] usb 5-1: config 0 has no interfaces?
[  520.260391][T13008]  das-1801st
[  520.264231][T13008]  das-1801st-da
[  520.265993][T13008]  das-1802st
[  520.266378][  T857] usb 5-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  520.267810][T13008]  das-1802st-da
[  520.277353][T13008]  das-1802hr
[  520.283185][T13008]  das-1802hr-da
[  520.283557][  T857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  520.289613][T13008]  das-1801hc
[  520.291527][  T857] usb 5-1: Product: syz
[  520.291801][T13008]  das-1802hc
[  520.295146][  T857] usb 5-1: Manufacturer: syz
[  520.298660][  T857] usb 5-1: SerialNumber: syz
[  520.302344][T13008]  das-1801ao
[  520.308592][  T857] usb 5-1: config 0 descriptor??
[  520.309799][T13008]  das-1802ao
[  520.350929][T13008] comedi: valid board names for das800 driver are:
[  520.354938][T13008]  das-800
[  520.356889][T13008]  cio-das800
[  520.359348][T13008]  das-801
[  520.364603][T13008]  cio-das801
[  520.368640][T13008]  das-802
[  520.386647][T13008]  cio-das802
[  520.388202][T13008]  cio-das802/16
[  520.402175][T13008] comedi: valid board names for isa-das08 driver are:
[  520.419248][T13008]  isa-das08
[  520.424425][T13008]  das08-pgm
[  520.436435][T13008]  das08-pgh
[  520.440031][T13008]  das08-pgl
[  520.441589][T13008]  das08-aoh
[  520.444478][T13008]  das08-aol
[  520.456690][T13008]  das08-aom
[  520.464137][T13008]  das08/jr-ao
[  520.469171][T13008]  das08jr-16-ao
[  520.470771][T13008]  pc104-das08
[  520.478171][T13008]  das08jr/16
[  520.480853][T13008] comedi: valid board names for das16m1 driver are:
[  520.485414][T13008]  das16m1
[  520.487329][T13008] comedi: valid board names for dac02 driver are:
[  520.490511][T13008]  dac02
[  520.491694][T13008] comedi: valid board names for rti802 driver are:
[  520.495485][T13008]  rti802
[  520.497178][T13008] comedi: valid board names for rti800 driver are:
[  520.505415][T13008]  rti800
[  520.515610][T13008]  rti815
[  520.516831][T13008] comedi: valid board names for pcm3724 driver are:
[  520.520204][T13008]  pcm3724
[  520.522882][T13008] comedi: valid board names for pcl818 driver are:
[  520.535220][T13008]  pcl818l
[  520.537642][T13008]  pcl818h
[  520.540591][T13008]  pcl818hd
[  520.542130][T13008]  pcl818hg
[  520.543992][T13008]  pcl818
[  520.546457][T13008]  pcl718
[  520.549905][T13008]  pcm3718
[  520.551597][T13008] comedi: valid board names for pcl816 driver are:
[  520.554580][T13008]  pcl816
[  520.556517][T13008]  pcl814b
[  520.558149][T13008] comedi: valid board names for pcl812 driver are:
[  520.564854][T13008]  pcl812
[  520.568532][T13008]  pcl812pg
[  520.570497][T13008]  acl8112pg
[  520.573253][T13008]  acl8112dg
[  520.574800][T13008]  acl8112hg
[  520.576315][T13008]  a821pgl
[  520.579574][T13008]  a821pglnda
[  520.584045][T13008]  a821pgh
[  520.585973][T13008]  a822pgl
[  520.588247][T13008]  a822pgh
[  520.591621][T13008]  a823pgl
[  520.593330][T13008]  a823pgh
[  520.597070][T13008]  pcl813
[  520.598547][T13008]  pcl813b
[  520.600601][T13008]  acl8113
[  520.602299][T13008]  iso813
[  520.608038][T13008]  acl8216
[  520.612518][T13008]  a826pg
[  520.614016][T13008] comedi: valid board names for pcl730 driver are:
[  520.623022][T13008]  pcl730
[  520.624758][T13008]  iso730
[  520.626617][T13008]  acl7130
[  520.629790][T13008]  pcm3730
[  520.635164][T13008]  pcl725
[  520.636659][T13008]  p8r8dio
[  520.638142][T13008]  acl7225b
[  520.641548][T13008]  p16r16dio
[  520.644738][T13008]  pcl733
[  520.671408][T13008]  pcl734
[  520.673117][T13008]  opmm-1616-xt
[  520.685855][T13008]  pearl-mm-p
[  520.687576][T13008]  ir104-pbf
[  520.689972][T13008] comedi: valid board names for pcl726 driver are:
[  520.693133][T13008]  pcl726
[  520.694807][T13008]  pcl727
[  520.710833][T13008]  pcl728
[  520.715500][T13008]  acl6126
[  520.717171][T13008]  acl6128
[  520.718587][T13008] comedi: valid board names for pcl724 driver are:
[  520.723726][T13008]  pcl724
[  520.727336][T13008]  pcl722
[  520.731063][T13008]  pcl731
[  520.738256][T13008]  acl7122
[  520.746349][T13008]  acl7124
[  520.749264][T13008]  pet48dio
[  520.756936][T13008]  pcmio48
[  520.762712][T13008]  onyx-mm-dio
[  520.768705][T13008] comedi: valid board names for pcl711 driver are:
[  520.778938][T13008]  pcl711
[  520.784562][T13008]  pcl711b
[  520.789642][T13008]  acl8112hg
[  520.793307][T13008]  acl8112dg
[  520.798463][T13008] comedi: valid board names for amplc_pc263 driver are:
[  520.805769][T13008]  pc263
[  520.808661][T13008] comedi: valid board names for amplc_pc236 driver are:
[  520.814120][T13008]  pc36at
[  520.815672][T13008] comedi: valid board names for amplc_dio200 driver are:
[  520.826981][T13008]  pc212e
[  520.828249][T13008]  pc214e
[  520.829562][T13008]  pc215e
[  520.830747][T13008]  pc218e
[  520.840343][T13008]  pc272e
[  520.841676][T13008] comedi: valid board names for comedi_parport driver are:
[  520.847799][T13008]  comedi_parport
[  520.855125][T13008] comedi: valid board names for comedi_test driver are:
[  520.857836][T13008]  comedi_test
[  520.865211][T13008] comedi: valid board names for comedi_bond driver are:
[  520.874244][T13008]  comedi_bond
[  520.985901][ T5104] Bluetooth: hci1: link tx timeout
[  520.989292][ T5104] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  521.015047][ T5755] usb 5-1: USB disconnect, device number 22
[  521.022451][T13032] overlayfs: failed to clone lowerpath
[  521.033874][T13032] fuseblk: Bad value for 'fd'
[  521.109096][T13031] Bluetooth: hci1: link tx timeout
[  521.112836][T13031] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  521.146659][T13031] Bluetooth: hci1: link tx timeout
[  521.150289][T13031] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  521.328017][T13060] No control pipe specified
[  521.330405][T13031] Bluetooth: hci1: link tx timeout
[  521.330470][T13031] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  521.434884][T13031] Bluetooth: hci2: Malformed HCI Event
[  521.487006][T13031] Bluetooth: hci1: link tx timeout
[  521.493431][T13031] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  521.827104][   T29] IPVS: starting estimator thread 0...
[  521.832077][T13077] netlink: 'syz.0.1830': attribute type 12 has an invalid length.
[  521.836101][T13080] netlink: 'syz.0.1830': attribute type 12 has an invalid length.
[  521.840371][T13077] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1830'.
[  521.844781][T13080] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1830'.
[  521.874110][T13084] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  521.880821][T13084] overlayfs: NFS export requires an index dir, falling back to nfs_export=off.
[  521.959818][T13082] IPVS: using max 30 ests per chain, 72000 per kthread
[  521.968149][T13031] Bluetooth: hci1: link tx timeout
[  521.970506][T13031] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  522.386558][T13097] lo speed is unknown, defaulting to 1000
[  522.392487][T13097] lo speed is unknown, defaulting to 1000
[  522.395307][T13097] lo speed is unknown, defaulting to 1000
[  522.470909][T13103] wg2 speed is unknown, defaulting to 1000
[  522.492368][T13116] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1839'.
[  522.542814][T13116] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  522.695766][T13097] infiniband s
z1: set active
[  522.702119][T13097] infiniband s
z1: added lo
[  522.705554][ T5905] lo speed is unknown, defaulting to 1000
[  522.729292][T13097] smbdirect: ib_dev[s
z1]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[  522.737539][T13097] smbdirect: ib_dev[s
z1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[  522.745851][T13097] smbdirect: ib_dev[s
z1]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[  522.777315][T13097] RDS/IB: s
z1: added
[  522.779419][T13097] smc: adding ib device s
z1 with port count 1
[  522.782067][T13097] smc:    ib device s
z1 port 1 has no pnetid
[  522.803970][ T5905] lo speed is unknown, defaulting to 1000
[  522.807417][T13097] lo speed is unknown, defaulting to 1000
[  523.006250][T13031] Bluetooth: hci1: link tx timeout
[  523.009315][T13031] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  523.044979][T13097] lo speed is unknown, defaulting to 1000
[  523.078914][T13031] Bluetooth: hci1: command 0x0406 tx timeout
[  523.706038][T13123] netlink: 'syz.2.1840': attribute type 29 has an invalid length.
[  524.133842][T13097] lo speed is unknown, defaulting to 1000
[  524.268254][T13097] lo speed is unknown, defaulting to 1000
[  524.426826][T13097] lo speed is unknown, defaulting to 1000
[  524.528858][T13131] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1841'.
[  525.055446][   T40] kauditd_printk_skb: 91 callbacks suppressed
[  525.055460][   T40] audit: type=1326 audit(1779047687.109:5338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.068592][   T40] audit: type=1326 audit(1779047687.119:5339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.076435][   T40] audit: type=1326 audit(1779047687.119:5340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.085291][   T40] audit: type=1326 audit(1779047687.119:5341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.090310][T13136] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1842'.
[  525.096658][   T40] audit: type=1326 audit(1779047687.119:5342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.108192][   T40] audit: type=1326 audit(1779047687.119:5343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.117186][   T40] audit: type=1326 audit(1779047687.119:5344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.126911][   T40] audit: type=1326 audit(1779047687.119:5345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.135170][   T40] audit: type=1326 audit(1779047687.139:5346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.144814][   T40] audit: type=1326 audit(1779047687.139:5347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13133 comm="syz.4.1842" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  525.341764][T13103] Process accounting paused
[  525.451150][T13142] No control pipe specified
[  525.560701][T13138] syzkaller0: entered promiscuous mode
[  525.565722][T13138] syzkaller0: entered allmulticast mode
[  525.586769][T13138] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  525.665236][T13143] tipc: Resetting bearer <eth:syzkaller0>
[  525.739071][T13143] tipc: Disabling bearer <eth:syzkaller0>
[  525.987267][T13153] bond2: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  525.997173][T13153] bond2 (unregistering): Released all slaves
[  526.014302][T13156] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1849'.
[  526.018615][T13156] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1849'.
[  526.024700][T13157] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1849'.
[  526.029646][T13157] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1849'.
[  526.209796][T13162] bridge2: entered promiscuous mode
[  526.219398][T13162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1851'.
[  527.096023][T13220] bridge0: port 2(bridge_slave_1) entered blocking state
[  527.098553][T13220] bridge0: port 2(bridge_slave_1) entered listening state
[  527.102075][T13220] bridge0: port 1(bridge_slave_0) entered blocking state
[  527.105718][T13220] bridge0: port 1(bridge_slave_0) entered listening state
[  527.139082][ T5905] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  527.142701][T13220] 8021q: adding VLAN 0 to HW filter on device eth0
[  527.154698][T13220] 8021q: adding VLAN 0 to HW filter on device eth1
[  527.168491][T13220] 8021q: adding VLAN 0 to HW filter on device eth2
[  527.181128][T13220] 8021q: adding VLAN 0 to HW filter on device eth3
[  527.288934][ T5905] usb 7-1: Using ep0 maxpacket: 32
[  527.294476][ T5905] usb 7-1: unable to get BOS descriptor or descriptor too short
[  527.300638][ T5905] usb 7-1: config 8 has an invalid interface number: 188 but max is 0
[  527.304408][ T5905] usb 7-1: config 8 has no interface number 0
[  527.308255][ T5905] usb 7-1: config 8 interface 188 has no altsetting 0
[  527.319396][   T29] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  527.320266][ T5905] usb 7-1: string descriptor 0 read error: -22
[  527.330510][ T5905] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  527.335928][ T5905] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  527.350709][ T5905] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  527.361970][ T5905] dw2102: su3000_power_ctrl: 1, initialized 0
[  527.367963][ T5905] dvb-usb: bulk message failed: -22 (2/0)
[  527.470356][ T5905] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  527.491071][   T29] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  527.510270][ T5905] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  527.525346][   T29] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  527.535047][   T29] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  527.539220][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.544444][ T5905] usb 7-1: media controller created
[  527.562342][ T5905] dvb-usb: bulk message failed: -22 (6/0)
[  527.592203][ T5905] dw2102: i2c transfer failed.
[  527.606937][T13194] dvb-usb: bulk message failed: -22 (20/0)
[  527.617548][T13194] dw2102: i2c transfer failed.
[  527.619476][T13219] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  527.635384][   T29] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  527.643405][ T5905] dvb-usb: bulk message failed: -22 (6/0)
[  527.653540][ T5905] dw2102: i2c transfer failed.
[  527.662168][ T5905] dvb-usb: bulk message failed: -22 (6/0)
[  527.681228][ T5905] dw2102: i2c transfer failed.
[  527.719104][ T5905] dvb-usb: bulk message failed: -22 (6/0)
[  527.726496][ T5905] dw2102: i2c transfer failed.
[  527.733242][ T5905] dvb-usb: bulk message failed: -22 (6/0)
[  527.742835][ T5905] dw2102: i2c transfer failed.
[  527.753863][ T5905] dvb-usb: bulk message failed: -22 (6/0)
[  527.756239][ T5905] dw2102: i2c transfer failed.
[  527.799530][ T5905] dvb-usb: MAC address: 02:02:02:02:02:02
[  527.880637][ T5905] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  528.074649][ T5905] dvb-usb: bulk message failed: -22 (3/0)
[  528.088239][ T5905] dw2102: command 0x0e transfer failed.
[  528.120328][ T5905] dvb-usb: bulk message failed: -22 (3/0)
[  528.126718][ T5905] dw2102: command 0x0e transfer failed.
[  528.143730][   T29] usb 5-1: USB disconnect, device number 23
[  528.442494][ T5905] dvb-usb: bulk message failed: -22 (3/0)
[  528.453484][ T5905] dw2102: command 0x0e transfer failed.
[  528.472898][ T5905] dvb-usb: bulk message failed: -22 (3/0)
[  528.479412][ T5905] dw2102: command 0x0e transfer failed.
[  528.485523][ T5905] dvb-usb: bulk message failed: -22 (1/0)
[  528.491926][ T5905] dw2102: command 0x51 transfer failed.
[  528.614505][ T5905] DVB: Unable to find symbol ds3000_attach()
[  528.617612][ T5905] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  528.836952][ T5905] rc_core: IR keymap rc-su3000 not found
[  528.842331][ T5905] Registered IR keymap rc-empty
[  528.866336][ T5905] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.2/usb7/7-1/rc/rc0
[  528.895863][ T5905] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.2/usb7/7-1/rc/rc0/input22
[  528.953880][ T5905] dvb-usb: schedule remote query interval to 150 msecs.
[  528.960747][ T5905] dw2102: su3000_power_ctrl: 0, initialized 1
[  528.965979][ T5905] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  529.160279][   T10] dvb-usb: bulk message failed: -22 (1/0)
[  529.731744][ T5905] usb 7-1: USB disconnect, device number 22
[  529.953166][   T10] dw2102: i2c transfer failed.
[  530.625380][ T5905] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  530.971053][T13264] __nla_validate_parse: 1 callbacks suppressed
[  530.971073][T13264] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1876'.
[  531.131041][T13268] wg2 speed is unknown, defaulting to 1000
[  531.231411][T13255] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1874'.
[  531.261964][T13275] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1879'.
[  531.350095][T13275] bond_slave_0: entered promiscuous mode
[  531.352587][T13275] bond_slave_0: entered allmulticast mode
[  531.371640][T13268] lo speed is unknown, defaulting to 1000
[  532.179191][T13300] wg2 speed is unknown, defaulting to 1000
[  532.374956][T13300] lo speed is unknown, defaulting to 1000
[  532.787646][T13315] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  532.884767][T13321] IPv6: Can't replace route, no match found
[  533.350986][T13331] netlink: 'syz.2.1886': attribute type 1 has an invalid length.
[  533.414470][T13331] 8021q: adding VLAN 0 to HW filter on device bond0
[  534.277477][T13346] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1890'.
[  534.345010][T13347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1890'.
[  535.014968][T13352] 9pnet_virtio: no channels available for device syz
[  535.199077][ T5854] usb 9-1: new full-speed USB device number 6 using dummy_hcd
[  535.331205][ T5854] usb 9-1: device descriptor read/64, error -71
[  535.579148][ T5854] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[  535.720999][ T5854] usb 9-1: device descriptor read/64, error -71
[  535.829860][ T5854] usb usb9-port1: attempt power cycle
[  535.854167][T13376] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1896'.
[  535.860071][T13376] gre0: entered promiscuous mode
[  535.862691][T13376] gre0: entered allmulticast mode
[  536.169507][ T5854] usb 9-1: new full-speed USB device number 8 using dummy_hcd
[  536.207268][ T5854] usb 9-1: device descriptor read/8, error -71
[  536.448964][ T5854] usb 9-1: new full-speed USB device number 9 using dummy_hcd
[  536.469686][ T5854] usb 9-1: device descriptor read/8, error -71
[  536.580494][ T5854] usb usb9-port1: unable to enumerate USB device
[  536.777748][T13381] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  536.786136][T13381] Error validating options; rc = [-22]
[  538.049416][T13391] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  538.073424][T13391] picdev_read: 1 callbacks suppressed
[  538.073447][T13391] kvm: pic: non byte read
[  538.245182][T13397] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  538.263107][T13397] kvm: pic: level sensitive irq not supported
[  538.263836][T13397] kvm: pic: non byte read
[  538.270596][T13397] kvm: pic: level sensitive irq not supported
[  538.270883][T13397] kvm: pic: non byte read
[  538.276878][T13397] kvm: pic: level sensitive irq not supported
[  538.277210][T13397] kvm: pic: non byte read
[  538.283182][T13397] kvm: pic: level sensitive irq not supported
[  538.283567][T13397] kvm: pic: non byte read
[  538.290088][T13397] kvm: pic: level sensitive irq not supported
[  538.290409][T13397] kvm: pic: non byte read
[  538.295922][T13397] kvm: pic: level sensitive irq not supported
[  538.296277][T13397] kvm: pic: non byte read
[  538.302866][T13397] kvm: pic: level sensitive irq not supported
[  538.303185][T13397] kvm: pic: non byte read
[  538.308816][T13397] kvm: pic: level sensitive irq not supported
[  538.309177][T13397] kvm: pic: non byte read
[  538.328377][T13397] kvm: pic: level sensitive irq not supported
[  538.328802][T13397] kvm: pic: non byte read
[  538.335101][T13397] kvm: pic: level sensitive irq not supported
[  538.456933][T13404] netlink: 'syz.1.1904': attribute type 1 has an invalid length.
[  538.545565][T13404] bond7: entered promiscuous mode
[  538.550090][T13404] 8021q: adding VLAN 0 to HW filter on device bond7
[  538.904218][T13415] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  539.029665][T13419] overlay: Unknown parameter 'smackfsfloor'
[  539.941536][T13440] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1913'.
[  540.043941][T13443] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1914'.
[  540.048210][T13443] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1914'.
[  540.054910][T13446] No source specified
[  540.055143][T13443] netlink: 19 bytes leftover after parsing attributes in process `syz.2.1914'.
[  540.080085][T13441] gfs2: error -5 reading superblock
[  540.168481][T13452] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1917'.
[  540.340449][T13455] could not allocate digest TFM handle poly1305
[  540.463089][T13468] overlayfs: failed to clone lowerpath
[  540.556975][T13471] dlm: Unknown command passed to DLM device : 3
[  540.556975][T13471] 
[  541.104121][T13506] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.1930'.
[  541.687806][T13529] /dev/nullb0: Can't open blockdev
[  541.724733][T13529] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  541.728680][T13529] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  541.734527][T13529] overlayfs: failed to set uuid (443/file0, err=-13); falling back to uuid=null.
[  541.749926][T13531] kAFS: unable to lookup cell 'syz1'
[  541.756706][T13531] kAFS: unable to lookup cell 'syz1'
[  541.771754][T13531] kAFS: unable to lookup cell 'syz1'
[  541.777555][T13531] kAFS: unable to lookup cell 'syz1'
[  541.788629][T13531] kAFS: unable to lookup cell 'syz1'
[  541.792226][T13531] kAFS: unable to lookup cell 'syz1'
[  541.795001][T13531] kAFS: unable to lookup cell 'syz1'
[  541.797487][T13531] kAFS: unable to lookup cell 'syz1'
[  541.801145][T13531] kAFS: unable to lookup cell 'syz1'
[  541.803393][T13531] kAFS: unable to lookup cell 'syz1'
[  541.805547][T13531] kAFS: unable to lookup cell 'syz1'
[  541.808003][T13531] kAFS: unable to lookup cell 'syz1'
[  541.823950][T13531] kAFS: unable to lookup cell 'syz1'
[  541.826693][T13531] kAFS: unable to lookup cell 'syz1'
[  541.829737][T13531] kAFS: unable to lookup cell 'syz1'
[  541.832318][T13531] kAFS: unable to lookup cell 'syz1'
[  541.834790][T13531] kAFS: unable to lookup cell 'syz1'
[  541.837456][T13531] kAFS: unable to lookup cell 'syz1'
[  541.843770][T13531] kAFS: unable to lookup cell 'syz1'
[  541.852538][T13531] kAFS: unable to lookup cell 'syz1'
[  541.854973][T13531] kAFS: unable to lookup cell 'syz1'
[  541.865681][T13531] kAFS: unable to lookup cell 'syz1'
[  541.871511][T13531] kAFS: unable to lookup cell 'syz1'
[  541.876121][T13531] kAFS: unable to lookup cell 'syz1'
[  541.886509][T13531] kAFS: unable to lookup cell 'syz1'
[  541.889918][T13531] kAFS: unable to lookup cell 'syz1'
[  541.898222][T13531] kAFS: unable to lookup cell 'syz1'
[  541.908589][T13531] kAFS: unable to lookup cell 'syz1'
[  541.914150][T13531] kAFS: unable to lookup cell 'syz1'
[  541.918486][T13531] kAFS: unable to lookup cell 'syz1'
[  541.927364][T13531] kAFS: unable to lookup cell 'syz1'
[  541.932119][T13531] kAFS: unable to lookup cell 'syz1'
[  541.934437][T13531] kAFS: unable to lookup cell 'syz1'
[  542.000219][T13545] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1940'.
[  542.010723][T13545] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1940'.
[  542.182785][T13558] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1944'.
[  542.186255][T13558] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1944'.
[  542.262532][T13560] vlan2: entered allmulticast mode
[  542.264266][T13560] bond3: entered allmulticast mode
[  542.522541][    C3] bridge0: port 1(bridge_slave_0) entered learning state
[  542.530298][    C3] bridge0: port 2(bridge_slave_1) entered learning state
[  542.548945][T13567] overlayfs: missing 'lowerdir'
[  542.606231][T13568] netlink: 'syz.0.1947': attribute type 1 has an invalid length.
[  542.899566][T13568] 8021q: adding VLAN 0 to HW filter on device bond4
[  543.059474][ T5854] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  543.211999][T13575] bond4: (slave geneve2): making interface the new active one
[  543.225961][T13575] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  543.230922][ T3510] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  543.652153][ T1161] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  543.683021][ T7798] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  543.802742][ T7798] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  545.525491][T13576] syz.0.1947 (13576): drop_caches: 2
[  545.531307][T13602] netlink: 'syz.1.1954': attribute type 12 has an invalid length.
[  545.749793][T13606] gfs2: path_lookup on  returned error -2
[  545.862313][T13615] __nla_validate_parse: 2 callbacks suppressed
[  545.862341][T13615] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1956'.
[  545.979866][T13625] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1960'.
[  546.172363][T13639] binder: 13633:13639 ioctl 80045113 80000400 returned -22
[  546.242022][T13641] siw: device registration error -23
[  546.279090][  T857] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  546.609477][T13652] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  546.609803][T13653] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  546.954231][T13659] fuse: fd is not a fuse device
[  546.954242][T13660] fuse: fd is not a fuse device
[  546.957991][T13660] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  546.992270][T13660] overlayfs: missing 'lowerdir'
[  547.158343][ T5854] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  547.448929][  T857] usb 9-1: Using ep0 maxpacket: 32
[  547.453560][  T857] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[  547.457728][  T857] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  547.464247][  T857] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  547.471154][  T857] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  547.478671][  T857] usb 9-1: config 0 interface 0 has no altsetting 0
[  547.484197][  T857] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  547.488500][  T857] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  547.493556][  T857] usb 9-1: Product: syz
[  547.495804][  T857] usb 9-1: Manufacturer: syz
[  547.498002][  T857] usb 9-1: SerialNumber: syz
[  547.502906][  T857] usb 9-1: config 0 descriptor??
[  547.513653][  T857] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  547.526712][  T857] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  547.554519][T13670] 9p: Bad value for 'rfdno'
[  547.841472][T13668] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  547.853857][T13668] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  548.948626][  T857] usb 9-1: USB disconnect, device number 10
[  548.969301][  T857] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  556.906426][T13715] netlink: 7064 bytes leftover after parsing attributes in process `syz.0.1971'.
[  556.910723][T13715] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  556.925591][T13715] gre1: entered promiscuous mode
[  557.041408][T13724] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  557.229064][T12602] usb 7-1: new low-speed USB device number 23 using dummy_hcd
[  557.392057][T12602] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  557.396045][T12602] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  557.404185][T12602] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  557.409023][ T5905] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  557.413435][T12602] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  557.429157][T12602] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  557.436593][T12602] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  557.444827][T12602] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  557.464121][T12602] usb 7-1: string descriptor 0 read error: -22
[  557.468363][T12602] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  557.480840][T12602] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  557.495256][T12602] usb 7-1: config 0 descriptor??
[  557.504652][T12602] hub 7-1:0.0: bad descriptor, ignoring hub
[  557.517585][T12602] hub 7-1:0.0: probe with driver hub failed with error -5
[  557.539054][ T5905] usb 9-1: device descriptor read/64, error -71
[  557.544551][T12602] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input24
[  557.634892][T13707] Process accounting resumed
[  557.799132][ T5905] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  557.889002][    C3] bridge0: port 2(bridge_slave_1) entered forwarding state
[  557.891641][    C3] bridge0: topology change detected, propagating
[  557.894690][    C3] bridge0: port 1(bridge_slave_0) entered forwarding state
[  557.898564][    C3] bridge0: topology change detected, propagating
[  557.929153][ T5905] usb 9-1: device descriptor read/64, error -71
[  557.939141][T13727] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  557.945363][T13727] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  557.964127][T13727] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1976'.
[  557.971606][T13727] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1976'.
[  557.981074][ T5826] usb 7-1: USB disconnect, device number 23
[  558.039269][ T5905] usb usb9-port1: attempt power cycle
[  558.140259][T13742] input: syz0 as /devices/virtual/input/input25
[  558.378992][ T5905] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  558.399934][ T5905] usb 9-1: device descriptor read/8, error -71
[  558.570336][  T857] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  558.640258][ T5905] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  558.686579][ T5905] usb 9-1: device descriptor read/8, error -71
[  558.799410][ T5905] usb usb9-port1: unable to enumerate USB device
[  558.830829][  T857] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  558.840542][  T857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  558.853013][  T857] usb 5-1: Product: syz
[  558.863409][  T857] usb 5-1: Manufacturer: syz
[  558.870065][  T857] usb 5-1: SerialNumber: syz
[  559.036198][  T857] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  559.395397][ T5854] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  559.948443][T13763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1985'.
[  560.760553][ T5854] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  560.765858][ T5854] ath9k_htc: Failed to initialize the device
[  561.005020][T13768] netlink: 'syz.4.1986': attribute type 1 has an invalid length.
[  561.026509][T13768] netlink: 'syz.4.1986': attribute type 2 has an invalid length.
[  561.085454][ T5854] usb 5-1: ath9k_htc: USB layer deinitialized
[  561.765912][  T857] usb 5-1: USB disconnect, device number 24
[  562.268623][T13781] netlink: 34 bytes leftover after parsing attributes in process `syz.4.1989'.
[  562.602077][T13785] syzkaller0: entered promiscuous mode
[  562.607829][T13785] syzkaller0: entered allmulticast mode
[  562.626541][T13790] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  562.628953][T13790] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  562.633539][T13790] vhci_hcd vhci_hcd.0: Device attached
[  562.786392][T13800] FAULT_INJECTION: forcing a failure.
[  562.786392][T13800] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  562.792821][T13800] CPU: 2 UID: 0 PID: 13800 Comm: syz.0.1993 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  562.792855][T13800] Tainted: [L]=SOFTLOCKUP
[  562.792865][T13800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  562.792876][T13800] Call Trace:
[  562.792883][T13800]  <TASK>
[  562.792891][T13800]  dump_stack_lvl+0x100/0x190
[  562.792918][T13800]  should_fail_ex.cold+0x5/0xa
[  562.792943][T13800]  _copy_from_user+0x2e/0xd0
[  562.792963][T13800]  move_addr_to_kernel+0x65/0x170
[  562.792992][T13800]  __sys_bind+0x11d/0x260
[  562.793010][T13800]  ? __pfx___sys_bind+0x10/0x10
[  562.793037][T13800]  ? ksys_write+0x1ac/0x250
[  562.793064][T13800]  __ia32_sys_bind+0x71/0xb0
[  562.793079][T13800]  ? lockdep_hardirqs_on+0x78/0x100
[  562.793107][T13800]  __do_fast_syscall_32+0xe7/0x950
[  562.793123][T13800]  ? lockdep_hardirqs_on+0x78/0x100
[  562.793151][T13800]  do_fast_syscall_32+0x32/0x70
[  562.793168][T13800]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  562.793190][T13800] RIP: 0023:0xf7fd4fcc
[  562.793206][T13800] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  562.793224][T13800] RSP: 002b:00000000f549650c EFLAGS: 00000292 ORIG_RAX: 0000000000000169
[  562.793242][T13800] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  562.793253][T13800] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  562.793264][T13800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  562.793274][T13800] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  562.793285][T13800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.793310][T13800]  </TASK>
[  562.929114][  T857] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  562.939052][ T1352] usb 42-1: SetAddress Request (18) to port 0
[  562.946058][ T1352] usb 42-1: new SuperSpeed USB device number 18 using vhci_hcd
[  563.066268][T13794] vhci_hcd: connection reset by peer
[  563.069204][ T7798] vhci_hcd vhci_hcd.2: stop threads
[  563.071557][ T7798] vhci_hcd vhci_hcd.2: release socket
[  563.077201][ T7798] vhci_hcd vhci_hcd.2: disconnect device
[  563.080090][  T857] usb 9-1: Using ep0 maxpacket: 32
[  563.084017][  T857] usb 9-1: config 0 has an invalid interface number: 119 but max is 0
[  563.086953][  T857] usb 9-1: config 0 has no interface number 0
[  563.091008][  T857] usb 9-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  563.096446][  T857] usb 9-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xD3, changing to 0x83
[  563.102502][  T857] usb 9-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  563.106788][  T857] usb 9-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  563.116344][  T857] usb 9-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73
[  563.120210][  T857] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  563.123644][  T857] usb 9-1: Product: syz
[  563.125473][  T857] usb 9-1: Manufacturer: syz
[  563.127380][  T857] usb 9-1: SerialNumber: syz
[  563.131940][  T857] usb 9-1: config 0 descriptor??
[  563.141358][  T857] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.119/input/input26
[  563.458390][  T857] usb 9-1: USB disconnect, device number 15
[  563.462845][T13805] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  563.489435][T13810] bridge_slave_0: left allmulticast mode
[  563.497496][T13810] bridge_slave_0: left promiscuous mode
[  563.505406][T13810] bridge0: port 1(bridge_slave_0) entered disabled state
[  563.580468][T13810] bridge_slave_1: left allmulticast mode
[  563.583760][T13810] bridge_slave_1: left promiscuous mode
[  563.587675][T13810] bridge0: port 2(bridge_slave_1) entered disabled state
[  563.596696][T13810] team0: Port device team_slave_0 removed
[  563.605303][T13810] team0: Port device team_slave_1 removed
[  563.608416][T13810] batman_adv: batadv0: Removing interface: batadv_slave_0
[  563.613005][T13810] batman_adv: batadv0: Removing interface: batadv_slave_1
[  563.617897][T13810] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  563.788960][T12602] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  563.989048][T12602] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  563.992876][T12602] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  563.997251][T12602] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  564.043300][T12602] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  564.047011][T12602] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  564.050396][T12602] usb 7-1: Product: syz
[  564.051964][T12602] usb 7-1: Manufacturer: syz
[  564.053890][T12602] usb 7-1: SerialNumber: syz
[  564.359995][T12602] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 24 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  564.400541][T12602] usb 7-1: USB disconnect, device number 24
[  564.410953][T12602] usblp0: removed
[  565.944248][T13843] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  567.928125][T13853] /dev/nullb0: Can't open blockdev
[  568.050315][ T1352] usb 42-1: device descriptor read/8, error -110
[  568.121219][ T1434] ieee802154 phy0 wpan0: encryption failed: -22
[  568.450179][ T1352] usb usb42-port1: attempt power cycle
[  568.661636][T13862] overlay: filesystem on ./file0 is read-only
[  568.995510][T11165] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  569.042426][ T1352] usb usb42-port1: unable to enumerate USB device
[  569.175470][T11165] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  569.179811][T11165] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  569.183927][T11165] usb 7-1: Product: syz
[  569.185975][T11165] usb 7-1: Manufacturer: syz
[  569.188300][T11165] usb 7-1: SerialNumber: syz
[  569.198195][T11165] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  569.235596][ T5905] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  569.247520][T13861] netlink: 'syz.2.2008': attribute type 4 has an invalid length.
[  569.436630][T13872] bridge1: entered promiscuous mode
[  569.439219][T13872] bridge1: entered allmulticast mode
[  569.476783][   T10] usb 7-1: USB disconnect, device number 25
[  569.494133][T13872] bridge2: entered promiscuous mode
[  569.495953][T13872] bridge2: entered allmulticast mode
[  569.667050][T13888] veth1_macvtap: entered promiscuous mode
[  569.683739][T13888] veth1_macvtap: entered allmulticast mode
[  569.723118][T13888] 8021q: adding VLAN 0 to HW filter on device bond3
[  569.736867][T13888] 8021q: adding VLAN 0 to HW filter on device bond5
[  569.767268][T13888] 8021q: adding VLAN 0 to HW filter on device eth0
[  569.773435][T13888] 8021q: adding VLAN 0 to HW filter on device eth1
[  569.780402][T13888] 8021q: adding VLAN 0 to HW filter on device eth2
[  569.785234][T13893] netlink: 'syz.4.2014': attribute type 3 has an invalid length.
[  569.786562][T13888] 8021q: adding VLAN 0 to HW filter on device eth3
[  569.799419][ T7798] bridge0: port 2(bridge_slave_1) entered blocking state
[  569.802936][ T7798] bridge0: port 2(bridge_slave_1) entered forwarding state
[  569.806556][  T857] lo speed is unknown, defaulting to 1000
[  569.874228][ T1161] bond4: (slave veth11): link status definitely up, 10000 Mbps full duplex
[  570.107497][T13904] random: crng reseeded on system resumption
[  570.279015][ T5905] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  570.283688][ T5905] ath9k_htc: Failed to initialize the device
[  570.296889][   T10] usb 7-1: ath9k_htc: USB layer deinitialized
[  571.274536][T13923] binder: BC_ATTEMPT_ACQUIRE not supported
[  571.282521][T13923] binder: 13919:13923 ioctl c0306201 80000540 returned -22
[  571.326189][T13923] 9p: Bad value for 'rfdno'
[  571.719976][T13230] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  571.795606][T13230] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  571.859223][T13230] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  571.961585][T13230] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  572.042168][T13230] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  572.732410][T13927] wg2 speed is unknown, defaulting to 1000
[  572.951459][T13927] lo speed is unknown, defaulting to 1000
[  573.150180][T13957] smbdirect: ib_dev[syz0]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  573.156589][T13957] smbdirect: ib_dev[syz0]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  573.163744][T13957] smbdirect: ib_dev[syz0]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  573.207985][T13957] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  573.573268][T13966] netlink: 'syz.2.2027': attribute type 10 has an invalid length.
[  573.609895][T13966] veth0_vlan: left promiscuous mode
[  573.616276][T13966] veth0_vlan: entered promiscuous mode
[  573.625418][T13966] team0: Device veth0_vlan failed to register rx_handler
[  573.663286][T13927] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.666702][T13927] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.670451][T13927] bridge_slave_0: entered allmulticast mode
[  573.675038][T13927] bridge_slave_0: entered promiscuous mode
[  573.680386][T13927] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.683686][T13927] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.687418][T13927] bridge_slave_1: entered allmulticast mode
[  573.692563][T13927] bridge_slave_1: entered promiscuous mode
[  574.059727][T13927] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  574.209106][T13230] Bluetooth: hci2: command tx timeout
[  574.213145][T13927] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  574.345025][T13927] team0: Port device team_slave_0 added
[  574.353342][T13927] team0: Port device team_slave_1 added
[  574.463899][T13927] batman_adv: batadv0: Adding interface: batadv_slave_0
[  574.467105][T13927] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  574.498942][T13927] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  574.511358][T13927] batman_adv: batadv0: Adding interface: batadv_slave_1
[  574.519766][T13927] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  574.549188][T13927] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  574.642791][T13927] hsr_slave_0: entered promiscuous mode
[  574.649729][T13927] hsr_slave_1: entered promiscuous mode
[  574.656718][T13927] debugfs: 'hsr0' already exists in 'hsr'
[  574.666114][T13927] Cannot create hsr debugfs directory
[  575.225461][T13927] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.395789][T13927] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.509648][T13927] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  576.085746][T13927] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  576.294032][T13230] Bluetooth: hci2: command tx timeout
[  576.373531][T13991] wg2 speed is unknown, defaulting to 1000
[  576.391493][T13995] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2034'.
[  576.402533][T13995] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2034'.
[  576.406661][T13995] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2034'.
[  576.545732][T13927] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  576.801663][T13927] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  576.805784][T13927] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  576.831826][T13927] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  576.837594][T14001] gre0: left promiscuous mode
[  577.158070][T14001] veth0_vlan: left promiscuous mode
[  577.173545][T14001] veth0_vlan: entered promiscuous mode
[  577.230664][T14001] 8021q: adding VLAN 0 to HW filter on device eth0
[  577.271971][T14001] 8021q: adding VLAN 0 to HW filter on device eth1
[  577.283640][T14001] 8021q: adding VLAN 0 to HW filter on device eth2
[  577.298209][T14001] 8021q: adding VLAN 0 to HW filter on device eth3
[  577.304858][T14001] gretap1: left promiscuous mode
[  577.310878][T14001] batman_adv: batadv0: Interface activated: gretap1
[  577.328871][T14001] geneve3: left promiscuous mode
[  577.336137][T14001] bond2: left promiscuous mode
[  577.341587][T14001] bridge3: left promiscuous mode
[  577.371898][T14001] vlan0: left promiscuous mode
[  577.373936][T14001] bridge0: left promiscuous mode
[  577.381869][T13927] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  577.388483][T13927] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  577.393254][T13991] lo speed is unknown, defaulting to 1000
[  577.429905][T13927] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  577.549695][T13927] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  577.586194][T13999] gre0 speed is unknown, defaulting to 1000
[  577.637085][T13999] gre0 speed is unknown, defaulting to 1000
[  577.645968][T13999] gre0 speed is unknown, defaulting to 1000
[  577.754611][T13927] 8021q: adding VLAN 0 to HW filter on device bond0
[  577.769577][T13927] 8021q: adding VLAN 0 to HW filter on device team0
[  577.811720][T13927] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  577.816123][T13927] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  577.882334][ T1270] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.885783][ T1270] bridge0: port 1(bridge_slave_0) entered forwarding state
[  577.893570][ T1270] bridge0: port 2(bridge_slave_1) entered blocking state
[  577.897103][ T1270] bridge0: port 2(bridge_slave_1) entered forwarding state
[  578.188842][T14016] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  578.574074][T13230] Bluetooth: hci2: command tx timeout
[  578.799674][T14014] vhci_hcd vhci_hcd.0: failed to lookup sock
[  578.999379][T13999] infiniband syz1: set active
[  579.002077][ T1352] gre0 speed is unknown, defaulting to 1000
[  579.004980][T13999] infiniband syz1: added gre0
[  579.009800][T13999] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[  579.011849][T13999] infiniband syz1: Couldn't open port 1
[  579.018690][T13999] smbdirect: ib_dev[syz1]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[  579.026133][T13999] smbdirect: ib_dev[syz1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[  579.034161][T13999] smbdirect: ib_dev[syz1]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[  579.070825][T13999] RDS/IB: syz1: added
[  579.072841][T13999] smc: adding ib device syz1 with port count 1
[  579.075514][T13999] smc:    ib device syz1 port 1 has no pnetid
[  579.079634][ T1352] gre0 speed is unknown, defaulting to 1000
[  579.083582][T13999] gre0 speed is unknown, defaulting to 1000
[  579.213215][T13927] 8021q: adding VLAN 0 to HW filter on device batadv0
[  579.284580][T13927] veth0_vlan: entered promiscuous mode
[  579.286580][T14028] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  579.346232][T13927] veth1_vlan: entered promiscuous mode
[  579.378829][T13927] veth0_macvtap: entered promiscuous mode
[  579.422639][T13927] veth1_macvtap: entered promiscuous mode
[  579.453326][T13927] batman_adv: batadv0: Interface activated: batadv_slave_0
[  579.461546][T13927] batman_adv: batadv0: Interface activated: batadv_slave_1
[  579.579891][ T7798] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  579.606211][ T7798] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  579.652161][T13999] gre0 speed is unknown, defaulting to 1000
[  579.652410][ T3510] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  579.690016][ T7798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  579.693497][ T7798] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  579.715302][ T3510] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  579.734101][ T3510] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  579.768514][ T3510] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  580.609260][T13230] Bluetooth: hci2: command tx timeout
[  580.803091][ T1352] libceph: connect (1)[c::]:6789 error -101
[  580.822888][ T1352] libceph: mon0 (1)[c::]:6789 connect error
[  581.034602][T13999] gre0 speed is unknown, defaulting to 1000
[  581.104463][ T1352] libceph: connect (1)[c::]:6789 error -101
[  581.107490][ T1352] libceph: mon0 (1)[c::]:6789 connect error
[  581.290374][T14050] ceph: No mds server is up or the cluster is laggy
[  581.424550][T13999] gre0 speed is unknown, defaulting to 1000
[  581.467882][T14071] tmpfs: Cannot disable swap on remount
[  581.649577][T14073] netlink: 'syz.0.2045': attribute type 4 has an invalid length.
[  581.678352][T14073] [U] 
[  581.680340][T14073] [U] K{�
[  581.681784][T14073] [U] �T �1��Š�F���Fˊ�`G�Jǘ�G���������O��/�MC�
[  581.688986][T14073] [U] T�ؖ/,�~�Ĝ��J���}8���'O1��"�7-΂JQ�K��W��Q�5C%"�H12��Y������X�`���ȼ`+��(�¿!(���Z'�TXLN�I�G�J����ݭ�P�~�7�!���"ب���(�5�OBܤ�̓J�
[  581.703253][T14073] [U] �K\&�}6�6�X�HX��Ե���.`�A�$�40|϶��9��ި����U��4��ĮVBZ��}�W�M�T���Q��ΦR�4��
[  581.710074][T14073] [U] ".H6��"�KÇ[����J�4��I�N��[Z(��C|T�]Z{��3�C=��X�Ԟ˅�4�W�)\T�XJ��SH{Q;̹���T��+���G��߮D�.˂�>Y����WUH�FN����HL]S�2���\G%�O�&Z)�К'�PUL�_<�     �ذ�Ү��`ұT��ޜ���;_�"(�U{7J��2X �/�'��C���I����H�C�ճ�V�=��AI�%W�ES� R��J�Μ���G��R��͡HI
���A��6-�D��V�� I"��Nƨ ��ASC~4���8C�*�OO5/ߜJ�~���W�VK+����3��Y)��M���V��YQƽ�DTR�
OTPEM%F��EJ�A5��T_-X~�^AAۂҘ�Q��
[  581.739055][T14073] [U]         +�W�G?]��'A:    ��)�
����' B>T���F/��<'�U�'��H�I�.+]E�.�-ɿ߿�%��>2`�^U�8F.�6��3��+�A�«���G3�P��6:�^0��T��V�'E�T����YC�N��Rϩ�N�PJ�;�Z����ۑ8!��\م�A�ʖ2��$е�­WI.��#��/BAI���`��4J��D�Y@�Z��GW�5˿B��ٜ�N�Y"VI2��
[  581.758701][T14073] [U] ܾ�4B`˗H�T�_K5�T�YJ���9��C�$BR�L�NUL��9W���|�G�"ʃ�%�ڶ�C�؝���Q��
 ��3��Q��N^HP*��$   �.�7Yӱ�2�
[  581.767041][T14073] [U] �?���H��*����3͝7�ɍ�^#Q�"0~���(�O�XL�B�,'V��=���C�S���G�S��0�ւ��`���ه��=1(�ξ��P#�2DO*Ƀ
[  581.773907][T14073] [U] �S��G������GU��D-{���|&�����ѐ2��L�C_��!`��OZ֥�B��%>�RѶ�WχݎSS�H"�YA4�O.�Y��ď�RTԶ�B�[+/<<R�B����|ФE���۠�V96#���ͤʦJ�U�%
S851���ҩS�P��\��?Q�|L��QX�0�K�1ORɴ2��|��D�F���ِ��2ޔ���0��H�}C[/����PX^��O
[  581.790777][T14073] [U] �؛���(J�Л��M��XZ�;�����؝_����*3�3��5�\�XM��U��AK!AQ`��;FЕ�I+��VUH���M�J��Ʒ��Z�C��Z���)_ǟ�  ԑ�&�֡��A�XTO���_� ڼ�:���%��P���Cֲ�Y�+_�ܛ��}U�M��ƫC�!KJ�7пG��=B�
[  581.802644][T14073] [U] ٽ�F�%�XA��L�2R*G��VW��$��J     �A��F����+ؾ9̈́VI�֗�Kپ�1}_��
��%�R6��(]��/��ؐřYܺ��Hä���R G��RN/ܫ�#!�D����%���D��-{�$�VU��T���$:MTR�E�C1V�D~��];[�����SQ����(��E,X�8�"�
��G�D�ڵ2@T8���҃����T8.RC+�@�ʦ�P�U�
P����C���'ńYL�-SS1E?�7�O���^]����C�½H]�JKR]RKQ܆��ݣ޴OTC��X���4�N�  ��&����ڋ��@�:M7�~�+�W*���XM��>>��{Q���
_�՝LX8�U����{�Z��ؐ)��7?�RR;�C�R�Hײڣ����1�>)�Mă‰�T���(��Aϝ�}9�ڥ�J*Mќ�ġ�'L��Q    �DW��ظ=��|Q�   �Æ�W;5��Ž�!�DB�X`ɧ�/��E�`Ʀ\
[  581.830325][T14073] [U] M��X��"�{;�ե�٘_�O2��)�O��.2�W2ʲ��Y���X_  HPϱ�S�D����:]�{�����Ƚ
[  581.835900][T14073] [U] I,�>�Ӥ ��5�1��^1�N4�OǶ�'0�?֒I�9W.�_.�W�A���V��`)�Z���C6GIӹ�A��XL[����F�*��O�W)+��'\N�
[K@����2�Ǭ���P"^`���   ؿ
[  581.849196][T14073] [U] 22��Ʃ�۩X?0;3U�
[  581.853604][T14073] [U] ޜ�
ƍ�SOBX�8�W�4��(�~/���K�U��ԖOQ�E+�G�-Y�GY_
�>V�����3.H�ә]̈́�2��)�D�,        ��      �D~�D���+�W;A\�F
P��Ș|$��)�
KؐI���ɿK�YT^R���Ǚ���A=�#�ܜ       �Ϳ�AE��T�1��ݯ4K�.E"R�S|П�S���:��>P��R�"Z�ڭ���#P!�KY"�}��F�N84ܳ��Hޱ�O��S��̫%DLW�MƲ�
[  581.899159][T14073] [U] [�['XN�'�����,MR��/����1D=!D�X91B�
WǻR�LF���K̤Z��#�`̑L؛�˜��B~�M���
[  581.903663][T14073] [U] �L�>�сD+�D�����"5�ʍ�H3<���IR=F^�F�N��������V���D�OIO�:U�>�Y�
[  581.907625][T14073] [U] 'B�6V�20�ķǞ��׌�"T8�{9�FW��]���̩�
[  581.911857][T14073] [U] �72މ���U�C6����τI]8C��TۨQSK�Y��I��¹ �|V'�TV/��G�$[� 9KH`�"ܑ��}��[^=��0�]��%�̂T�����F�_V�4C���
[  581.917079][T14073] [U] �EC�
[  581.919144][T14073] [U] ���|���<��:^�3$7NK~�-�@��?��/MTL��۾�I�WȬ@G~T�{��P�+�$�JP|���I�RIӍPM� ��Y� ڔ8�T���V�����,�L�,�
[  581.948407][T14072] [U] �K�����)0���~ܳʪ�IP'�F�ҜZ��R���@B�]�5��{��ʼ�'�8�ƥF��UTQUD
ǩ�K;7ͪ0C[��Y���YC���ذM��L�8�T�͚�5���RX����W� X���OQHVI'8����L�
[  581.996742][T13999] gre0 speed is unknown, defaulting to 1000
[  582.134536][T14080] /dev/nullb0: Can't open blockdev
[  582.526901][T13230] Bluetooth: hci1: link tx timeout
[  582.534326][T13230] Bluetooth: hci1: killing stalled connection 10:aa:aa:aa:aa:aa
[  583.402349][T14118] pim6reg1: entered promiscuous mode
[  583.404706][T14118] pim6reg1: entered allmulticast mode
[  583.716740][T14125] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2058'.
[  583.728930][T14125] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2058'.
[  583.732274][T14125] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2058'.
[  584.066427][   T40] kauditd_printk_skb: 140 callbacks suppressed
[  584.066509][   T40] audit: type=1804 audit(1779047746.109:5488): pid=14134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2059" name="/newroot/8/file0" dev="tmpfs" ino=58 res=1 errno=0
[  584.115485][T14129] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2060'.
[  584.265598][T14129] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2060'.
[  584.610111][T13203] Bluetooth: hci1: command 0x0406 tx timeout
[  586.766486][   T54] IPVS: starting estimator thread 0...
[  586.859359][T14202] IPVS: using max 42 ests per chain, 100800 per kthread
[  587.065909][T14210] random: crng reseeded on system resumption
[  587.528609][T14220] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2072'.
[  587.550463][T14220] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2072'.
[  587.757941][T14227] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  587.769336][T14227] comedi comedi3: multiq3: I/O base address or length out of range
[  587.839054][ T5826] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  587.844609][T14231] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2074'.
[  587.858035][T14231] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2074'.
[  587.864549][T14231] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2074'.
[  587.989049][ T5826] usb 5-1: Using ep0 maxpacket: 32
[  588.003207][ T5826] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  588.012511][ T5826] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  588.025038][ T5826] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  588.047547][ T5826] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  588.059002][ T5826] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  588.067612][ T5826] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  588.093533][ T5826] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  588.105474][ T5826] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.124193][ T5826] usb 5-1: config 0 descriptor??
[  588.832009][T14245] overlayfs: missing 'lowerdir'
[  589.022715][ T1270] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  589.169828][T14250] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2078'.
[  589.176092][T14250] netem: incorrect ge model size
[  589.179307][T14250] netem: change failed
[  589.653701][T14262] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2081'.
[  590.421040][T14268] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2082'.
[  590.518842][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  590.662490][T14277] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2086'.
[  590.795535][ T5826] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 25 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  590.849778][ T5826] usb 5-1: USB disconnect, device number 25
[  590.891274][ T5826] usblp0: removed
[  591.046965][T14287] wg2 speed is unknown, defaulting to 1000
[  591.223132][T14287] lo speed is unknown, defaulting to 1000
[  591.300305][   T40] audit: type=1326 audit(1779047753.349:5489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14286 comm="syz.4.2090" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x0
[  591.357718][T14294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2088'.
[  591.362263][T14294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2088'.
[  591.396400][T14287] gre0 speed is unknown, defaulting to 1000
[  591.519018][   T29] kernel read not supported for file /dsp1 (pid: 29 comm: kworker/1:0)
[  591.925052][T14298] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2091'.
[  591.930082][T14298] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2091'.
[  591.936053][T14298] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2091'.
[  592.179352][T14305] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  592.183939][T14305] netdevsim netdevsim2 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  592.276122][T14313] netlink: 959 bytes leftover after parsing attributes in process `syz.0.2095'.
[  592.346352][T14305] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  592.353666][T14305] netdevsim netdevsim2 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  592.529944][T14305] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  592.534056][T14305] netdevsim netdevsim2 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  592.663212][T14305] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  592.669890][T14305] netdevsim netdevsim2 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  592.791399][ T3557] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  592.805212][ T3557] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  592.847431][ T3557] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  592.859033][ T3557] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  592.892946][ T3557] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  592.899177][ T3557] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  592.916649][ T3557] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  592.942477][ T3557] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  592.998978][    C2] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  593.339637][T14339] random: crng reseeded on system resumption
[  593.477400][T14344] syzkaller0: entered promiscuous mode
[  593.481600][T14344] syzkaller0: entered allmulticast mode
[  593.491653][T14344] tc action pedit offset must be on 32 bit boundaries
[  593.739126][T14361] ipvlan0: entered promiscuous mode
[  593.741959][T14361] ipvlan0: entered allmulticast mode
[  593.744478][T14361] veth0_vlan: entered allmulticast mode
[  594.450287][T14373] QAT: Device 253 not found
[  594.582373][   T40] audit: type=1326 audit(1779047756.639:5490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.614163][   T40] audit: type=1326 audit(1779047756.639:5491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.643434][   T40] audit: type=1326 audit(1779047756.639:5492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.661458][   T40] audit: type=1326 audit(1779047756.639:5493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.693232][   T40] audit: type=1326 audit(1779047756.639:5494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.719285][   T40] audit: type=1326 audit(1779047756.639:5495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.732586][T14388] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  594.756419][   T40] audit: type=1326 audit(1779047756.639:5496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.767262][T14388] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  594.779011][   T40] audit: type=1326 audit(1779047756.639:5497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.806494][   T40] audit: type=1326 audit(1779047756.639:5498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14381 comm="syz.2.2115" exe="/syz-executor" sig=0 arch=40000003 syscall=399 compat=1 ip=0xf708efcc code=0x7ffc0000
[  594.895628][T14390] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 1��^!�l�1�*�$pOc�ɔ��r$�G����
[  595.161950][T14391] sysfs: cannot create duplicate filename '/class/ieee80211/1��^!�l�1�*�$pOc�ɔ��r$�G����'
[  595.170240][T14391] CPU: 0 UID: 0 PID: 14391 Comm: syz.1.2116 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  595.170277][T14391] Tainted: [L]=SOFTLOCKUP
[  595.170298][T14391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  595.170310][T14391] Call Trace:
[  595.170318][T14391]  <TASK>
[  595.170327][T14391]  dump_stack_lvl+0x100/0x190
[  595.170356][T14391]  sysfs_warn_dup.cold+0x1c/0x28
[  595.170384][T14391]  sysfs_do_create_link_sd+0x113/0x140
[  595.170406][T14391]  sysfs_create_link+0x61/0xc0
[  595.170427][T14391]  device_add+0x675/0x1950
[  595.170453][T14391]  ? __pfx_device_add+0x10/0x10
[  595.170478][T14391]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  595.170507][T14391]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  595.170532][T14391]  wiphy_register+0x1edd/0x2d90
[  595.170561][T14391]  ? __rtnl_unlock+0xb9/0xf0
[  595.170590][T14391]  ? __pfx_wiphy_register+0x10/0x10
[  595.170616][T14391]  ? __asan_memset+0x23/0x50
[  595.170646][T14391]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  595.170672][T14391]  ieee80211_register_hw+0x3055/0x4570
[  595.170702][T14391]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  595.170718][T14391]  ? __pfx___debug_object_init+0x10/0x10
[  595.170749][T14391]  ? find_held_lock+0x2b/0x80
[  595.170792][T14391]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  595.170817][T14391]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  595.170841][T14391]  ? __hrtimer_setup+0x208/0x330
[  595.170863][T14391]  mac80211_hwsim_new_radio+0x2a01/0x5aa0
[  595.170897][T14391]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  595.170924][T14391]  ? __asan_memcpy+0x3c/0x60
[  595.170955][T14391]  hwsim_new_radio_nl+0xc5f/0x1370
[  595.170974][T14391]  ? rcu_is_watching+0x12/0xc0
[  595.170996][T14391]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  595.171021][T14391]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0
[  595.171052][T14391]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0
[  595.171085][T14391]  genl_family_rcv_msg_doit+0x214/0x300
[  595.171105][T14391]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  595.171120][T14391]  ? irqentry_exit+0x24d/0x7e0
[  595.171149][T14391]  ? trace_reschedule_exit.constprop.0+0x6b/0x220
[  595.171215][T14391]  ? bpf_lsm_capable+0x9/0x10
[  595.171241][T14391]  ? security_capable+0x80/0x260
[  595.171276][T14391]  ? ns_capable+0xd2/0xf0
[  595.171301][T14391]  genl_rcv_msg+0x560/0x800
[  595.171321][T14391]  ? __pfx_genl_rcv_msg+0x10/0x10
[  595.171337][T14391]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  595.171369][T14391]  netlink_rcv_skb+0x159/0x420
[  595.171394][T14391]  ? __pfx_genl_rcv_msg+0x10/0x10
[  595.171411][T14391]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.171444][T14391]  ? rcu_is_watching+0x12/0xc0
[  595.171469][T14391]  genl_rcv+0x28/0x40
[  595.171493][T14391]  netlink_unicast+0x585/0x850
[  595.171521][T14391]  ? __pfx_netlink_unicast+0x10/0x10
[  595.171551][T14391]  netlink_sendmsg+0x8b0/0xda0
[  595.171579][T14391]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.171606][T14391]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  595.171635][T14391]  ____sys_sendmsg+0x9e1/0xb70
[  595.171657][T14391]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.171682][T14391]  ? __pfx_____sys_sendmsg+0x10/0x10
[  595.171703][T14391]  ? __pfx___futex_wait+0x10/0x10
[  595.171728][T14391]  ? __pfx_futex_wake_mark+0x10/0x10
[  595.171795][T14391]  ___sys_sendmsg+0x190/0x1e0
[  595.171824][T14391]  ? __pfx____sys_sendmsg+0x10/0x10
[  595.171857][T14391]  ? find_held_lock+0x2b/0x80
[  595.171892][T14391]  __sys_sendmsg+0x170/0x220
[  595.171915][T14391]  ? __pfx___sys_sendmsg+0x10/0x10
[  595.171946][T14391]  ? rcu_is_watching+0x12/0xc0
[  595.171968][T14391]  __do_fast_syscall_32+0xe7/0x950
[  595.171987][T14391]  do_fast_syscall_32+0x32/0x70
[  595.172006][T14391]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  595.172027][T14391] RIP: 0023:0xf704efcc
[  595.172043][T14391] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  595.172062][T14391] RSP: 002b:00000000f53fb50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  595.172083][T14391] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000100
[  595.172095][T14391] RDX: 0000000004000010 RSI: 0000000000000000 RDI: 0000000000000000
[  595.172106][T14391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  595.172115][T14391] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  595.172124][T14391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  595.172147][T14391]  </TASK>
[  596.025219][T14404] __nla_validate_parse: 9 callbacks suppressed
[  596.025240][T14404] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2119'.
[  596.032700][T14404] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2119'.
[  596.037110][T14404] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2119'.
[  596.110925][T14412] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2123'.
[  596.845562][T14430] bridge0: port 3(erspan0) entered blocking state
[  596.853082][T14430] bridge0: port 3(erspan0) entered disabled state
[  596.861485][T14430] erspan0: entered allmulticast mode
[  596.869343][T14434] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2127'.
[  596.918431][T14436] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2126'.
[  597.403059][T14430] erspan0: entered promiscuous mode
[  597.405738][T14430] bridge0: port 3(erspan0) entered blocking state
[  597.408510][T14430] bridge0: port 3(erspan0) entered listening state
[  597.524989][T14446] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2129'.
[  597.695221][T14403] x_tables: duplicate underflow at hook 1
[  597.883313][T14459] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2133'.
[  597.887966][T14459] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2133'.
[  597.892890][T14459] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2133'.
[  598.198989][  T857] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  598.366504][  T857] usb 5-1: no configurations
[  598.368693][  T857] usb 5-1: can't read configurations, error -22
[  598.552943][  T857] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  598.720345][  T857] usb 5-1: no configurations
[  598.723472][  T857] usb 5-1: can't read configurations, error -22
[  598.734006][  T857] usb usb5-port1: attempt power cycle
[  599.079809][  T857] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  599.114559][  T857] usb 5-1: no configurations
[  599.118532][  T857] usb 5-1: can't read configurations, error -22
[  599.258984][  T857] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  599.280549][  T857] usb 5-1: no configurations
[  599.284695][  T857] usb 5-1: can't read configurations, error -22
[  599.290199][  T857] usb usb5-port1: unable to enumerate USB device
[  600.759308][    C2] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  601.316013][T14512] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2146'.
[  601.563987][T14529] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2151'.
[  601.579372][T14529] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  601.611945][T14529] batman_adv: batadv0: Removing interface: batadv_slave_1
[  601.940468][T14537] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2154'.
[  603.552667][T14572] random: crng reseeded on system resumption
[  603.646183][T14552] erspan0: left allmulticast mode
[  603.648232][T14552] erspan0: left promiscuous mode
[  603.650343][T14552] bridge0: port 4(erspan0) entered disabled state
[  603.667134][T14552] team0: left allmulticast mode
[  603.668702][T14577] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2162'.
[  603.669989][T14552] team_slave_0: left allmulticast mode
[  603.677115][T14552] team_slave_1: left allmulticast mode
[  603.679543][T14552] dummy0: left allmulticast mode
[  603.681997][T14552] team0: left promiscuous mode
[  603.683819][T14552] team_slave_0: left promiscuous mode
[  603.686447][T14552] team_slave_1: left promiscuous mode
[  603.689356][T14552] bridge1: left promiscuous mode
[  603.692324][T14552] dummy0: left promiscuous mode
[  603.695287][T14552] bridge0: port 3(team0) entered disabled state
[  603.714103][T14552] team0: Port device dummy0 removed
[  603.719801][T14552] bridge_slave_0: left allmulticast mode
[  603.722138][T14552] bridge_slave_0: left promiscuous mode
[  603.724637][T14552] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.728417][T14580] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2162'.
[  603.736848][T14552] bridge_slave_1: left allmulticast mode
[  603.739827][T14552] bridge_slave_1: left promiscuous mode
[  603.742248][T14552] bridge0: port 2(bridge_slave_1) entered disabled state
[  603.755359][T14552] team0: Port device team_slave_0 removed
[  603.766763][T14552] team0: Port device team_slave_1 removed
[  603.770197][T14552] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  603.773196][T14552] batman_adv: batadv0: Removing interface: batadv_slave_0
[  603.781180][T14552] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  603.784346][T14552] batman_adv: batadv0: Removing interface: batadv_slave_1
[  603.790163][T14552] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  603.862635][ T1352] gre0 speed is unknown, defaulting to 1000
[  604.124715][T14590] overlayfs: failed to resolve './file1/file0': -20
[  604.607712][T14604] atomic_op ffff888020caf198 conn xmit_atomic 0000000000000000
[  606.091990][T14603] batman_adv: batadv0: Interface deactivated: gretap1
[  606.135409][ T1352] gre0 speed is unknown, defaulting to 1000
[  606.138205][ T1161] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 20000 - 0
[  606.144759][ T1161] netdevsim netdevsim2 eth0: unset [1, 1] type 2 family 0 port 6081 - 0
[  606.149329][ T1161] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 20000 - 0
[  606.157511][ T1161] netdevsim netdevsim2 eth1: unset [1, 1] type 2 family 0 port 6081 - 0
[  606.166132][ T1161] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 20000 - 0
[  606.172184][ T1161] netdevsim netdevsim2 eth2: unset [1, 1] type 2 family 0 port 6081 - 0
[  606.194963][ T1352] syz1: Port: 1 Link DOWN
[  606.195436][ T1161] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 20000 - 0
[  606.206136][ T1161] netdevsim netdevsim2 eth3: unset [1, 1] type 2 family 0 port 6081 - 0
[  606.213797][ T1352] gre0 speed is unknown, defaulting to 1000
[  606.390815][T14619] fuse: Bad value for 'rootmode'
[  606.404177][T14619] trusted_key: encrypted_key: insufficient parameters specified
[  606.422996][T14619] trusted_key: encrypted_key: insufficient parameters specified
[  606.639248][ T1485] usb 7-1: new full-speed USB device number 26 using dummy_hcd
[  606.789339][ T1485] usb 7-1: device descriptor read/64, error -71
[  607.048962][ T1485] usb 7-1: new full-speed USB device number 27 using dummy_hcd
[  607.219005][ T1485] usb 7-1: device descriptor read/64, error -71
[  607.243928][    C0] ==================================================================
[  607.247253][    C0] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0x3a/0x60
[  607.251915][    C0] Read of size 1 at addr ffff8880259e5818 by task syz.0.2178/14643
[  607.276768][    C0] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  607.279185][    C0] CPU: 0 UID: 0 PID: 14643 Comm: syz.0.2178 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  607.279222][    C0] Tainted: [L]=SOFTLOCKUP
[  607.279229][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  607.279238][    C0] Call Trace:
[  607.279246][    C0]  <IRQ>
[  607.279255][    C0]  dump_stack_lvl+0x100/0x190
[  607.279282][    C0]  print_report+0x13d/0x4b0
[  607.279309][    C0]  ? __virt_addr_valid+0x239/0x430
[  607.279340][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  607.279361][    C0]  kasan_report+0xdf/0x1d0
[  607.279381][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  607.279405][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  607.279429][    C0]  __kasan_check_byte+0x36/0x50
[  607.279447][    C0]  lock_acquire+0x12a/0x370
[  607.279465][    C0]  ? do_raw_spin_unlock+0x53/0x1e0
[  607.279486][    C0]  ? .slowpath+0x9/0x18
[  607.279507][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[  607.279531][    C0]  ? p9_req_put+0xaf/0x250
[  607.279548][    C0]  p9_req_put+0xaf/0x250
[  607.279565][    C0]  req_done+0x1dc/0x2e0
[  607.279590][    C0]  ? __pfx_req_done+0x10/0x10
[  607.279612][    C0]  ? do_raw_spin_unlock+0x145/0x1e0
[  607.279628][    C0]  ? __pfx_req_done+0x10/0x10
[  607.279646][    C0]  vring_interrupt+0x2ef/0x650
[  607.279671][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  607.279692][    C0]  __handle_irq_event_percpu+0x235/0x8c0
[  607.279715][    C0]  handle_irq_event+0xab/0x1e0
[  607.279738][    C0]  handle_edge_irq+0x35e/0x960
[  607.279757][    C0]  __common_interrupt+0xd8/0x2f0
[  607.279783][    C0]  common_interrupt+0xb9/0xe0
[  607.279804][    C0]  </IRQ>
[  607.279812][    C0]  <TASK>
[  607.279819][    C0]  asm_common_interrupt+0x26/0x40
[  607.279836][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[  607.279857][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 06 cb 58 f6 48 89 df e8 de 1a 59 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 75 e4 48 f6 65 8b 05 1e 7f 7f 08 85 c0 74 16 5b
[  607.279871][    C0] RSP: 0018:ffffc90006a3fb50 EFLAGS: 00000246
[  607.279886][    C0] RAX: 0000000000000006 RBX: ffff88801cb52f70 RCX: 0000000000000000
[  607.279899][    C0] RDX: 0000000000000000 RSI: ffffffff8df1e748 RDI: ffffffff8c1c3a00
[  607.279911][    C0] RBP: 0000000000000287 R08: 0000000000000001 R09: 0000000000000000
[  607.279922][    C0] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88801cb52500
[  607.279933][    C0] R13: ffff88801cb52f70 R14: ffffffff940c7380 R15: ffffc90006a3fbb0
[  607.279951][    C0]  try_to_wake_up+0x5ec/0x1900
[  607.279975][    C0]  ? __pfx_try_to_wake_up+0x10/0x10
[  607.279992][    C0]  ? find_held_lock+0x2b/0x80
[  607.280006][    C0]  ? futex_wake+0x456/0x530
[  607.280021][    C0]  wake_up_q+0xa1/0x130
[  607.280035][    C0]  futex_wake+0x460/0x530
[  607.280049][    C0]  ? __pfx_futex_wake+0x10/0x10
[  607.280069][    C0]  ? css_rstat_updated+0x1ce/0x5a0
[  607.280089][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  607.280120][    C0]  ? __pfx_css_rstat_updated+0x10/0x10
[  607.280144][    C0]  do_futex+0x32b/0x350
[  607.280164][    C0]  ? __pfx_do_futex+0x10/0x10
[  607.280182][    C0]  ? find_held_lock+0x2b/0x80
[  607.280200][    C0]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  607.280222][    C0]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  607.280245][    C0]  __ia32_sys_futex_time32+0x2f4/0x470
[  607.280268][    C0]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  607.280291][    C0]  ? rcu_is_watching+0x12/0xc0
[  607.280307][    C0]  __do_fast_syscall_32+0xe7/0x950
[  607.280319][    C0]  do_fast_syscall_32+0x32/0x70
[  607.280330][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  607.280344][    C0] RIP: 0023:0xf7fd4fcc
[  607.280354][    C0] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  607.280365][    C0] RSP: 002b:00000000ffd5dd1c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[  607.280376][    C0] RAX: ffffffffffffffda RBX: 00000000f7494f88 RCX: 0000000000000081
[  607.280383][    C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000
[  607.280389][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  607.280396][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  607.280402][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  607.280412][    C0]  </TASK>
[  607.280416][    C0] 
[  607.335536][ T1485] usb usb7-port1: attempt power cycle
[  607.337709][    C0] Allocated by task 14644:
[  607.337734][    C0]  kasan_save_stack+0x30/0x50
[  607.398105][T12602] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  607.399971][    C0]  kasan_save_track+0x14/0x30
[  607.400005][    C0]  __kasan_kmalloc+0xaa/0xb0
[  607.400021][    C0]  p9_client_create+0xaf/0xd40
[  607.400037][    C0]  v9fs_session_init+0x3c/0xd20
[  607.400056][    C0]  v9fs_get_tree+0xb8/0xb50
[  607.400076][    C0]  vfs_get_tree+0x92/0x320
[  607.400098][    C0]  path_mount+0x7d0/0x23d0
[  607.400119][    C0]  __ia32_sys_mount+0x292/0x310
[  607.400140][    C0]  __do_fast_syscall_32+0xe7/0x950
[  607.400156][    C0]  do_fast_syscall_32+0x32/0x70
[  607.400172][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  607.400193][    C0] 
[  607.400198][    C0] Freed by task 14644:
[  607.400209][    C0]  kasan_save_stack+0x30/0x50
[  607.400225][    C0]  kasan_save_track+0x14/0x30
[  607.400239][    C0]  kasan_save_free_info+0x3b/0x70
[  607.400260][    C0]  __kasan_slab_free+0x5f/0x80
[  607.400277][    C0]  kfree+0x223/0x6c0
[  607.400297][    C0]  p9_client_create+0x72d/0xd40
[  607.400315][    C0]  v9fs_session_init+0x3c/0xd20
[  607.400333][    C0]  v9fs_get_tree+0xb8/0xb50
[  607.550755][    C0]  vfs_get_tree+0x92/0x320
[  607.552769][    C0]  path_mount+0x7d0/0x23d0
[  607.554617][    C0]  __ia32_sys_mount+0x292/0x310
[  607.556428][    C0]  __do_fast_syscall_32+0xe7/0x950
[  607.558380][    C0]  do_fast_syscall_32+0x32/0x70
[  607.560470][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  607.563112][    C0] 
[  607.564540][    C0] The buggy address belongs to the object at ffff8880259e5800
[  607.564540][    C0]  which belongs to the cache kmalloc-512 of size 512
[  607.570467][    C0] The buggy address is located 24 bytes inside of
[  607.570467][    C0]  freed 512-byte region [ffff8880259e5800, ffff8880259e5a00)
[  607.578623][    C0] 
[  607.579712][    C0] The buggy address belongs to the physical page:
[  607.582934][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x259e4
[  607.586322][    C0] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  607.592574][    C0] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  607.595981][    C0] page_type: f5(slab)
[  607.597592][    C0] raw: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  607.601471][    C0] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  607.606051][    C0] head: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  607.610483][    C0] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  607.614723][    C0] head: 00fff00000000002 ffffffffffffff01 00000000ffffffff 00000000ffffffff
[  607.618614][    C0] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  607.622977][    C0] page dumped because: kasan: bad access detected
[  607.626001][    C0] page_owner tracks the page as allocated
[  607.628992][    C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5746, tgid 5746 (syz-executor), ts 70452932770, free_ts 67431766306
[  607.638004][    C0]  post_alloc_hook+0x153/0x170
[  607.640280][    C0]  get_page_from_freelist+0x11a6/0x33b0
[  607.642880][    C0]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  607.645373][    C0]  new_slab+0xa6/0x6c0
[  607.646982][    C0]  refill_objects+0x277/0x420
[  607.649061][    C0]  __pcs_replace_empty_main+0x375/0x650
[  607.651892][    C0]  __kmalloc_noprof+0x688/0x850
[  607.655610][    C0]  fib6_info_alloc+0x40/0x160
[  607.658652][    C0]  ip6_route_info_create+0x14c/0xad0
[  607.661449][    C0]  ip6_route_add+0x4b/0x1d0
[  607.664008][    C0]  addrconf_prefix_route+0x2fb/0x510
[  607.667441][    C0]  inet6_addr_add+0x575/0x9a0
[  607.669935][    C0]  inet6_rtm_newaddr+0x1475/0x1bb0
[  607.672247][    C0]  rtnetlink_rcv_msg+0x95e/0xe90
[  607.674286][    C0]  netlink_rcv_skb+0x159/0x420
[  607.676427][    C0]  netlink_unicast+0x585/0x850
[  607.678498][    C0] page last free pid 23 tgid 23 stack trace:
[  607.680687][    C0]  __free_frozen_pages+0x747/0x1040
[  607.682588][    C0]  rcu_core+0x5a2/0x10d0
[  607.684156][    C0]  handle_softirqs+0x1ea/0xa00
[  607.686428][    C0]  run_ksoftirqd+0x38/0x60
[  607.688580][    C0]  smpboot_thread_fn+0x3d3/0xaa0
[  607.690831][    C0]  kthread+0x370/0x450
[  607.692714][    C0]  ret_from_fork+0x72b/0xd50
[  607.695186][    C0]  ret_from_fork_asm+0x1a/0x30
[  607.697499][    C0] 
[  607.698529][    C0] Memory state around the buggy address:
[  607.700615][    C0]  ffff8880259e5700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  607.703441][    C0]  ffff8880259e5780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  607.707129][    C0] >ffff8880259e5800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  607.712610][    C0]                             ^
[  607.715455][    C0]  ffff8880259e5880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  607.718895][    C0]  ffff8880259e5900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  607.722410][    C0] ==================================================================
[  607.726323][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  607.729187][    C0] CPU: 0 UID: 0 PID: 14643 Comm: syz.0.2178 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  607.733748][    C0] Tainted: [L]=SOFTLOCKUP
[  607.735912][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  607.741129][    C0] Call Trace:
[  607.742482][    C0]  <IRQ>
[  607.743764][    C0]  dump_stack_lvl+0x100/0x190
[  607.746176][    C0]  vpanic+0x552/0x970
[  607.748621][    C0]  ? __pfx_vpanic+0x10/0x10
[  607.751267][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  607.753745][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  607.756116][    C0]  panic+0xd1/0xe0
[  607.757891][    C0]  ? __pfx_panic+0x10/0x10
[  607.759906][    C0]  ? end_report.part.0+0x23/0x90
[  607.762388][    C0]  ? rcu_is_watching+0x12/0xc0
[  607.765722][    C0]  ? end_report.part.0+0x23/0x90
[  607.769636][    C0]  ? check_panic_on_warn+0x1f/0x90
[  607.771949][    C0]  check_panic_on_warn.cold+0x19/0x34
[  607.774360][    C0]  end_report.part.0+0x3a/0x90
[  607.776288][    C0]  kasan_report.cold+0xe/0x18
[  607.778172][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  607.780190][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  607.782261][    C0]  __kasan_check_byte+0x36/0x50
[  607.784324][    C0]  lock_acquire+0x12a/0x370
[  607.786483][    C0]  ? do_raw_spin_unlock+0x53/0x1e0
[  607.788887][    C0]  ? .slowpath+0x9/0x18
[  607.790732][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[  607.792986][    C0]  ? p9_req_put+0xaf/0x250
[  607.795089][    C0]  p9_req_put+0xaf/0x250
[  607.796886][    C0]  req_done+0x1dc/0x2e0
[  607.798407][    C0]  ? __pfx_req_done+0x10/0x10
[  607.800347][    C0]  ? do_raw_spin_unlock+0x145/0x1e0
[  607.802582][    C0]  ? __pfx_req_done+0x10/0x10
[  607.805375][    C0]  vring_interrupt+0x2ef/0x650
[  607.807866][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  607.810213][    C0]  __handle_irq_event_percpu+0x235/0x8c0
[  607.812560][    C0]  handle_irq_event+0xab/0x1e0
[  607.814850][    C0]  handle_edge_irq+0x35e/0x960
[  607.817153][    C0]  __common_interrupt+0xd8/0x2f0
[  607.819749][    C0]  common_interrupt+0xb9/0xe0
[  607.822100][    C0]  </IRQ>
[  607.823533][    C0]  <TASK>
[  607.825025][    C0]  asm_common_interrupt+0x26/0x40
[  607.827367][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[  607.830122][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 06 cb 58 f6 48 89 df e8 de 1a 59 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 75 e4 48 f6 65 8b 05 1e 7f 7f 08 85 c0 74 16 5b
[  607.841237][    C0] RSP: 0018:ffffc90006a3fb50 EFLAGS: 00000246
[  607.844939][    C0] RAX: 0000000000000006 RBX: ffff88801cb52f70 RCX: 0000000000000000
[  607.849048][    C0] RDX: 0000000000000000 RSI: ffffffff8df1e748 RDI: ffffffff8c1c3a00
[  607.852749][    C0] RBP: 0000000000000287 R08: 0000000000000001 R09: 0000000000000000
[  607.857638][    C0] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88801cb52500
[  607.862705][    C0] R13: ffff88801cb52f70 R14: ffffffff940c7380 R15: ffffc90006a3fbb0
[  607.866941][    C0]  try_to_wake_up+0x5ec/0x1900
[  607.869564][    C0]  ? __pfx_try_to_wake_up+0x10/0x10
[  607.873119][    C0]  ? find_held_lock+0x2b/0x80
[  607.875979][    C0]  ? futex_wake+0x456/0x530
[  607.878262][    C0]  wake_up_q+0xa1/0x130
[  607.880767][    C0]  futex_wake+0x460/0x530
[  607.883262][    C0]  ? __pfx_futex_wake+0x10/0x10
[  607.886549][    C0]  ? css_rstat_updated+0x1ce/0x5a0
[  607.889918][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  607.892298][    C0]  ? __pfx_css_rstat_updated+0x10/0x10
[  607.895669][    C0]  do_futex+0x32b/0x350
[  607.898201][    C0]  ? __pfx_do_futex+0x10/0x10
[  607.901156][    C0]  ? find_held_lock+0x2b/0x80
[  607.903644][    C0]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  607.906752][    C0]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  607.911079][    C0]  __ia32_sys_futex_time32+0x2f4/0x470
[  607.914511][    C0]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  607.917317][    C0]  ? rcu_is_watching+0x12/0xc0
[  607.919643][    C0]  __do_fast_syscall_32+0xe7/0x950
[  607.921940][    C0]  do_fast_syscall_32+0x32/0x70
[  607.924308][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  607.927442][    C0] RIP: 0023:0xf7fd4fcc
[  607.929153][    C0] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  607.938088][    C0] RSP: 002b:00000000ffd5dd1c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[  607.942220][    C0] RAX: ffffffffffffffda RBX: 00000000f7494f88 RCX: 0000000000000081
[  607.945781][    C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000
[  607.949241][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  607.953341][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  607.957666][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  607.961631][    C0]  </TASK>
[  607.964419][    C0] Kernel Offset: disabled
[  607.966432][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:51:54  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857c3b75 RDI=ffffffff9b465820 RBP=ffffffff9b4657e0 RSP=ffffc90000007710
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3230383838666666
R12=0000000000000000 R13=0000000000000020 R14=0000000000000010 R15=ffffffff857c3b10
RIP=ffffffff857c3b9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097174000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73e1ac4 CR3=000000004cf5d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000011af1cd RBX=ffff88801c73a500 RCX=ffffffff8b886095 RDX=0000000000000000
RSI=ffffffff8df1e748 RDI=ffffffff8c1c3a00 RBP=0000000000000000 RSP=ffffc9000046fdf0
R8 =0000000000000001 R9 =ffffed10056667b5 R10=ffff88802b333dab R11=0000000000000000
R12=0000000000000001 R13=ffffed10038e74a0 R14=0000000000000001 R15=ffffffff90d7fd50
RIP=ffffffff8b88487f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097274000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ffd5e008 CR3=000000004c6a9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffffc90003d27b30 RCX=ffffffff8246db1e RDX=0000000000000000
RSI=0000000000000000 RDI=ffff888028f62500 RBP=ffffc90003d27930 RSP=ffffc90003d27800
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000080 R13=0000000000000000 R14=fffff520007a4f6a R15=dffffc0000000000
RIP=ffffffff8246de61 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff0a0342300 ffffffff 00c00000
GS =0000 ffff888097374000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000558f028a0f40 CR3=000000004bf62000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=672106b4619aeeb7 ac6622dd608568e7 672106b4619aeeb7 ac6622dd608568e7 672106b4619aeeb7 ac6622dd608568e7 672106b4619aeeb7 ac6622dd608568e7
ZMM18=b29f50d9510b8c48 c1e3d74708135f60 b29f50d9510b8c48 c1e3d74708135f60 b29f50d9510b8c48 c1e3d74708135f60 b29f50d9510b8c48 c1e3d74708135f60
ZMM19=980e000000000000 0000000000000004 980e000000000000 0000000000000003 980e000000000000 0000000000000002 980e000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffed0802 8003000400409280 080002800201c708 0008014dd6000200
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 07007363762f7665 642f01ffffffffff ffffffed08028003 2008000608002008
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00060173de01a008 0008800200080006 0102ac0100000008 0000000400000002
ZMM24=08135f6008135f60 08135f6008135f60 08135f6008135f60 08135f6008135f60 08135f6008135f60 08135f6008135f60 08135f6008135f60 08135f6008135f60
ZMM25=c1e3d747c1e3d747 c1e3d747c1e3d747 c1e3d747c1e3d747 c1e3d747c1e3d747 c1e3d747c1e3d747 c1e3d747c1e3d747 c1e3d747c1e3d747 c1e3d747c1e3d747
ZMM26=510b8c48510b8c48 510b8c48510b8c48 510b8c48510b8c48 510b8c48510b8c48 510b8c48510b8c48 510b8c48510b8c48 510b8c48510b8c48 510b8c48510b8c48
ZMM27=b29f50d9b29f50d9 b29f50d9b29f50d9 b29f50d9b29f50d9 b29f50d9b29f50d9 b29f50d9b29f50d9 b29f50d9b29f50d9 b29f50d9b29f50d9 b29f50d9b29f50d9
ZMM28=000000700000006f 0000006e0000006d 0000006c0000006b 0000006a00000069 0000006800000067 0000006600000065 0000006400000063 0000006200000061
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=970e0000970e0000 970e0000970e0000 970e0000970e0000 970e0000970e0000 970e0000970e0000 970e0000970e0000 970e0000970e0000 970e0000970e0000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff888028e9b000 RCX=ffffffff86874d1f RDX=ffff88801c7da500
RSI=ffffffff86874dbd RDI=ffff88801c7da500 RBP=0000000000000001 RSP=ffffc900005e8ea0
R8 =0000000000000004 R9 =0000000000000006 R10=0000000000000006 R11=0000000000000001
R12=ffffc90000415008 R13=0000000000000001 R14=ffff888028e9b438 R15=0000000000000000
RIP=ffffffff86874f57 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097474000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004cf5d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b357db599d8f707 171455da57095b58
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 98661077140d0c59 2296d04065e5c23c
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 843607d445ed55cf 35787047dd338281
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8ada68637533dbe4 18d15f1933f660cf
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000880
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d45028c01967c5a 0000000000000171
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0418ec4138bd3a48 008001003e01d330
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d74953c00000171 0000000000000171
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000017100000171 3ade985400000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2bf28b8235a02b3d 8d838153ac6373d6
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c142ece5f47ac530 e82a390c504f7f42
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000